I want to include the path (and other routes, such as the View Script Path) based on the access to the module. is it safe? If not, how can I safely set up the path dynamically? I'm doing something like the code below (this is from the control plugin.)
Public function sending loop startup (Zend_Controller_Request_Abstract $ request) {$ modName = $ request- & gt; GetModuleName (); $ ModulePath = APP_PATH. '/ Module /' $ ModName '/ Classes'; Set_include_path (.. get_include_path () PATH_SEPARATOR $ modulePath); }
I'm not sure whether it's safe or not, but it's the best ' What will be the sound like practice if a person enters a module name like .. / admin / ? You must prioritize the module name before using it.
No comments:
Post a Comment