Liam C.
Guest
offline
Hi there, I am currently creating an addon and I'm looking to try and ensure it's as secure as possible and would like to know either thoughts or suggestions on how to improve it.
I'm currently defining each route's controller with hasPermission at the start before anything else, and returning no permission. Is this a one size fits all solution? Is there any concern?
Second, we're handling form creation. I'm aware to use <xf:form> as it has more security with it but is...
Read more
Continue reading...
I'm currently defining each route's controller with hasPermission at the start before anything else, and returning no permission. Is this a one size fits all solution? Is there any concern?
Second, we're handling form creation. I'm aware to use <xf:form> as it has more security with it but is...
Read more
Continue reading...