represents the security settings of a dwoo instance, it can be passed around to different dwoo instances
This software is provided 'as-is', without any express or implied warranty. In no event will the authors be held liable for any damages arising from the use of this software.
Located in /Dwoo/Security/Policy.php (line 17)
paths that are safe to use with include or other file-access plugins
php functions that are allowed to be used within the template
stores the constant handling level
defaults to Dwoo_Security_Policy::CONST_DISALLOW
stores the php handling level
defaults to Dwoo_Security_Policy::PHP_REMOVE
adds a directory to the safelist for includes and other file-access plugins
note that all the includePath directories you provide to the Dwoo_Template_File class are automatically marked as safe
adds a php function to the allowed list
removes a directory from the safelist
removes a php function from the allowed list
returns the list of safe paths, note that the paths are stored in the array keys and not values
returns the list of php functions allowed to run, note that the function names are stored in the array keys and not values
sets the constant handling level, defaults to CONST_DISALLOW
sets the php handling level, defaults to REMOVE
constant handling constants, defaults to CONST_DISALLOW
CONST_DISALLOW : throw an error if {$dwoo.const.*} is used in the template CONST_ALLOW : allow {$dwoo.const.*} calls
constant handling constants, defaults to CONST_DISALLOW
CONST_DISALLOW : throw an error if {$dwoo.const.*} is used in the template CONST_ALLOW : allow {$dwoo.const.*} calls
php handling constants, defaults to PHP_REMOVE
PHP_REMOVE : remove all <?php ?> (+ short tags if your short tags option is on) from the input template PHP_ALLOW : leave them as they are PHP_ENCODE : run htmlentities over them
php handling constants, defaults to PHP_REMOVE
PHP_REMOVE : remove all <?php ?> (+ short tags if your short tags option is on) from the input template PHP_ALLOW : leave them as they are PHP_ENCODE : run htmlentities over them
php handling constants, defaults to PHP_REMOVE
PHP_REMOVE : remove all <?php ?> (+ short tags if your short tags option is on) from the input template PHP_ALLOW : leave them as they are PHP_ENCODE : run htmlentities over them
Documentation generated on Sat, 18 Jul 2009 21:05:16 +0200 by phpDocumentor 1.4.0