Re: [RFC] Escaping RFC for PHP Core - Updates?

From:	Levi Morrison	Date:	Sat, 07 Sep 2013 14:41:38 +0000
Subject:	Re: [RFC] Escaping RFC for PHP Core - Updates?
References:	1 2 3	Groups:	php.internals
Request:	Send a blank email to [email protected] to get a copy of this message

> It looks nicer than Escaper::escapeJs(), Escaper::escapeHtml(), etc.
>
> Any comments?


Please, don't go down this route. You do not want one class to escape all
kinds of data; delegate each type of escaping to its own class:

JavaScriptEscaper->escape();
PhpEscaper->escape();
HtmlEscaper->escape();
HtmlAttributeEscaper->escape();

I should not have to defend this but I am willing to explain in more detail
if someone would like me to.


   

Thread (13 messages)

• Yasuo OhgakiSat, 07 Sep 2013 03:36:26 +0000
  • LeighSat, 07 Sep 2013 05:56:43 +0000
    • Yasuo OhgakiSat, 07 Sep 2013 08:35:07 +0000
      • Pierre JoyeSat, 07 Sep 2013 08:51:03 +0000
        • Yasuo OhgakiFri, 27 Sep 2013 00:52:31 +0000
      • Levi MorrisonSat, 07 Sep 2013 14:41:38 +0000
        • Michael John BurgessSat, 07 Sep 2013 16:08:45 +0000
          • Nikita NefedovSat, 07 Sep 2013 16:36:30 +0000
            • Levi MorrisonSat, 07 Sep 2013 16:43:01 +0000
              • Florin PatanSat, 07 Sep 2013 16:55:25 +0000
              • Yasuo OhgakiFri, 27 Sep 2013 00:59:19 +0000
            • Yasuo OhgakiFri, 27 Sep 2013 00:53:34 +0000
          • Levi MorrisonSat, 07 Sep 2013 16:36:47 +0000