[geeklog-devel] Geeklog 2.1.1 Update and Plugin Configuration Changes

Tom websitemaster at cogeco.net
Sat Oct 3 13:14:42 EDT 2015


Just a note to all Plugin Developers regarding Geeklog 2.1.1 (hopefully
released in the next month) and the Geeklog Configuration. 

All inputs in the Configuration (Core and all plugins) are now automatically
sanitized by the strip_tags function. This will only affect plugins that
have a configuration option which requires anything to do with html tags. To
fix this you will need to add a new rule to your plugins
configuration_validation.php file for that particular config option.

To turn off strip_tags you would add:

'sanitize' => 'allTags'

To sanitize with Geeklogs approved html function for that user you would use
(this is the recommended way of handling this problem):

'sanitize' => 'approvedTags'

Here is an example of it in use:

$_CONF_VALIDATE['Core']['site_disabled_msg'] = array(
    'sanitize' => 'approvedTags', 
    'rule' => 'stringOrEmpty'
);

Thanks

Tom




More information about the geeklog-devel mailing list