Project

General

Profile

Actions
Copy link

Feature #22338

closed

Added marker in CONTENT object

Added by Jigal van Hemert over 14 years ago. Updated over 14 years ago.

Status:
Closed
Priority:
Should have
Assignee:
Steffen Kamper
Category:
-
Target version:
-
Start date:
2010-03-29
Due date:
% Done:

0%

Estimated time:
PHP Version:
5.2
Tags:
Complexity:
Sprint Focus:

Description

By using markers and properly quoting and escaping the values any value can be used in the properties of 'select'.
- a 'markers' property is add where the values of the markers (each with stdWrap support) can defined
- the values are properly escaped/quoted according to their type (integer, float, comma separated list, string (default)
- markers (as ###markername###) in all properties of 'select' (excepting andWhere) are replaced

This indirectly adds stdWrap to all properties of 'select' AND prevents SQL injection problems.

'andWhere' can become deprecated, because the only reason for its existence was stdWrap support.

Will solve problems mentioned with the solutions of issues 12094, 6882, 11220
(issue imported from #M13940)

Files

Download all files
13940_trunk.diff (3.67 KB) 13940_trunk.diff Administrator Admin, 2010-03-29 10:48
13940_trunk_v3.diff (5.04 KB) 13940_trunk_v3.diff Administrator Admin, 2010-04-08 22:00
13940_tslib_content_testcase.php_v1.diff (4.89 KB) 13940_tslib_content_testcase.php_v1.diff Administrator Admin, 2010-04-08 23:45
13940_trunk_v4.diff (4.71 KB) 13940_trunk_v4.diff Administrator Admin, 2010-04-13 22:55

Related issues 2 (0 open2 closed)

Related to TYPO3 Core - Feature #17881: Enable stdWrap for select.whereClosedOliver Hader2007-12-03

Actions
Has duplicate TYPO3 Core - Feature #21169: add fullQuoteStr to stdWrapClosedSteffen Gebert2009-10-01

Actions
Actions
Copy link

Also available in: Atom PDF