On 01/08/16 23:51, Yasuo Ohgaki wrote: > PHP must have input validation feature that achieves previously > described validation. Basic feature like input validation must be able > to perform quickly, so it should be provided as core feature like > basic escaping functions. > > Regards, > > P.S. I'll add string validation filters (e.g. min/max, encoding > check,etc) and validation function callback (i.e. Must return bool) > soon.
Once again lots of additional code is being added which only fixes HALF of the input validation problem. The same as 'strict typing'. All of these extras can simply be eliminated if you address the problem of adding a set of rules to the basic 'var' that allow proper validation of each individually ... and *I* include in those rules adding the correct escaping for that particular variable. Which is EXACTLY what oe does in the user land libraries that currently fill the gap. On one hand we are being pushed to add things like getter and setter and all that overhead to create proper objects, while this option is back with handling a raw set of variables as an array? -- Lester Caine - G8HFL ----------------------------- Contact - http://lsces.co.uk/wiki/?page=contact L.S.Caine Electronic Services - http://lsces.co.uk EnquirySolve - http://enquirysolve.com/ Model Engineers Digital Workshop - http://medw.co.uk Rainbow Digital Media - http://rainbowdigitalmedia.co.uk -- PHP Internals - PHP Runtime Development Mailing List To unsubscribe, visit: http://www.php.net/unsub.php
