smarty template engine
 Tuesday, October 07, 2008  
download | documentation | faq | forum | mailing lists | changelog | contribs 

search for in the  

Get Smarty

Download!
Contributed Code

What is Smarty?

Is Smarty right for me?
Why use it?
Crash Course
Preface from docs
Summary from docs
Testimonials

Get Help!

Quick Install
Documentation
Sample Application
Discussion Forums
Internet Relay Chat
Mailing Lists
Smarty Wiki
FAQ (from wiki)
Other Resources

Sponsors [more info]

AOE media TYPO3
Web Hosting @ReviewItOnline
Cheap Hosting @HostsVault
Internet Marketing Services @Cemper.com

Links

www.php.net
www.phpinsider.com

Vote for Smarty!

Feel free to put in your rating or review of Smarty at HotScripts.com

Smarty Icon

You may only use the Smarty logo according to the trademark notice



Tell us about it!

Got some news for the front page? New articles, weblog discussions, public talks, etc? Let us know!


Smarty Manual
PrevChapter 12. Smarty Class VariablesNext

$security

$security can be TRUE or FALSE, defaults to FALSE. Security is good for situations when you have untrusted parties editing the templates eg via ftp, and you want to reduce the risk of system security compromises through the template language. Turning on security enforces the following rules to the template language, unless specifially overridden with $security_settings:

  • If $php_handling is set to SMARTY_PHP_ALLOW, this is implicitly changed to SMARTY_PHP_PASSTHRU

  • PHP functions are not allowed in {if} statements, except those specified in the $security_settings

  • Templates can only be included from directories listed in the $secure_dir array

  • Local files can only be fetched from directories listed in the $secure_dir array using {fetch}

  • {php}{/php} tags are not allowed

  • PHP functions are not allowed as modifiers, except those specified in the $security_settings

PrevHomeNext
$php_handlingUp$secure_dir


 

credits 

Smarty Copyright © 2002-2008
New Digital Group, Inc.
All rights reserved.