Changes between Version 6 and Version 7 of CodingStyle


Ignore:
Timestamp:
Dec 22, 2007, 5:29:59 PM (17 years ago)
Author:
Nicolas
Comment:

Add information about database access from PHP

Legend:

Unmodified
Added
Removed
Modified
  • CodingStyle

    v6 v7  
    135135 * Do not access `$_POST` or `$_GET` directly.
    136136 * Use `get_int()`, `get_str()`, `post_int()` and `post_str()` (from `util.inc`) to get POST and GET data.
    137  * If a POST or GET value will be used in a SQL query, use `process_user_text()` to escape it.
    138137
     138=== Database access ===
     139 * Use the [PhpDb database abstraction layer].
     140 * If a POST or GET value will be used in a database query, use `BoincDb::escape_string` to escape it.