 |
Smarty
WARNING: All discussion is moving to https://reddit.com/r/smarty, please go there! This forum will be closing soon. |
|
| View previous topic :: View next topic |
| Author |
Message |
sm@rty
Smarty Regular
Joined: 01 Oct 2014
Posts: 65
|
 Posted: Thu Mar 26, 2015 3:36 pm Post subject: smarty whitelist constant |
 |
|
hi
how i can make a whitelist for allow constant in template ?
$smartySecurity->allow_constants = false;
this way is bad idea because false, true and etc not allowed |
|
| Back to top |
|
U.Tews
Administrator
Joined: 22 Nov 2006
Posts: 5068
Location: Hamburg / Germany
|
| Posted: Sat Mar 28, 2015 3:02 am Post subject: |
|
|
It was a bug that $smartySecurity->allow_constants = false; did disablle also true, false and null.
I added also the $trusted_constants array as whitelist for constants to Smarty Security. |
|
| Back to top |
|
U.Tews
Administrator
Joined: 22 Nov 2006
Posts: 5068
Location: Hamburg / Germany
|
| Posted: Sat Mar 28, 2015 3:03 am Post subject: |
|
|
It was a bug that $smartySecurity->allow_constants = false; did disablle also true, false and null.
I added also the $trusted_constants array as whitelist for constants to Smarty Security. |
|
| Back to top |
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
Powered by phpBB © 2001, 2005 phpBB Group
|
