[pmwiki-users] Fwd: FAST Data Project done...

Ralph Zeller ralph at zellercpa.com
Tue Aug 1 20:10:31 CDT 2006 

Caveman,

Nice recipe.  I suggest these changes to provide a slight bit more
integrity (at least for the data values).

Ralph

38c38
<                  $data .= "$field=\"$value\" %0a%0a";
---
>                  $data .= "$field=$value %0a%0a";
73c73
<               $FmtPV["$$dv[0]"] = stripslashes("$dv[1]");
---
>               $FmtPV["$$dv[0]"] = "$dv[1]";

On 08/01/06 08am, The Editor wrote:
> Hi all,
> 
> I have a request for help on a couple specific points in the Data
> Storage recipe, and an apparent problem/limitation I'm hoping for a
> work around.  Anyone that can help with one or more of these would be
> appreciated.
> 
> BIG PROBLEM FIRST:  Is there a limitation on the values that can be
> called up in a page variable, and if so, any way to override that?
> Right now I can set a page variable to "[Group.Name]" and it displays
> properly when I return the page variable.  But when I call it with
> {$pv}  it displays a blank.  Same thing if there are more than one
> word in a field.  It shows if one word, it gives a blank if none.
> This is a significant problem for me.
> 
> SMALL PROBLEMS SECOND:  I'd like a few fixes to improve security and
> functionality, including:
> 
> * Checking data to ensure values are not entered that will conflict
> with delimiters used in the recipe, or otherwise breaking the recipe.
> Should be added before line 38. Something   like if $field does not
> contain " or = or % { line 38 }.  Regex expressions?
> 
> * Requiring the data storage page to be limited to data*.* or data-*.*
> pages to prevent overwriting of existing wiki pages. See line 27.
> Something like, if first four letters of $field != to "Data" { do line
> 51};
> 
> * Is there a way to set the default values for select boxes, check
> boxes, radio buttons, etc, based on data content? This would be
> essential for being able to update these kinds of forms. I know it
> could be done in javascript, but hoping to use markup. Don't know if
> it's possible in the existing forms script.
> 
> Thanks in advance!
> 
> Cheers,
> Caveman
>

More information about the pmwiki-users mailing list