Home > Archive > PHP Pear > March 2005 > template, not template that is the problem.
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
template, not template that is the problem.
|
|
| Symbulos Partners 2005-03-24, 3:59 pm |
| Dear friends,
thanks for all the advice from you gurus.
I have moved the thread to the main group. I have changed the title.
From what you said, from all the documentation / articles you suggested,
there seems to be scarce utility in using templating engines even for mid
to large scale application.
So the best way forward seems to be using php with function / classes.
Is that right?
--
symbulos partners
-.-
symbulos - ethical services for your organisation
http://www.symbulos.com
| |
| Lukas Smith 2005-03-24, 3:59 pm |
| Symbulos Partners wrote:
> Dear friends,
>
> thanks for all the advice from you gurus.
>
> I have moved the thread to the main group. I have changed the title.
>
> From what you said, from all the documentation / articles you suggested,
> there seems to be scarce utility in using templating engines even for mid
> to large scale application.
uhm .. no like I said using template engines that do regexp based search
and replace protect you against template designers injecting logic (or
even malicous php code) into your system. it sounds like in your
situation this is a must.
> So the best way forward seems to be using php with function / classes.
if you go that route you either have to trust your template designers or
you can place your hope in security parsers. Like the following one:
http://bluga.net/projects/PHPCodeAnalyzer/
regards,
Lukas
| |
| Symbulos Partners 2005-03-25, 8:56 am |
| > uhm .. no like I said using template engines that do regexp based search
regexp based search? ops! what does that mean?
> if you go that route you either have to trust your template designers or
> you can place your hope in security parsers. Like the following one:
> http://bluga.net/projects/PHPCodeAnalyzer/
thanks for the security parser!
>
> regards,
> Lukas
--
symbulos partners
-.-
symbulos - ethical services for your organisation
http://www.symbulos.com
| |
| Lukas Smith 2005-03-25, 8:56 am |
| Symbulos Partners wrote:
>
>
> regexp based search? ops! what does that mean?
basically IT[X]/Sigma use regular expressions to find placeholders and
blocks. your code then is able to replace these placeholders and blocks.
this means the content of the templates is not included as code but as
text in your application.
this has severe di vantage however since it does incurr a performance
overhead that can be countered by caching. another divantage is that
it doesnt allow any loayout relevant logic. meaning you need to add
another layer to truly separate business from layout.
for example its not easily possible to give the designer the choice to
use alternating row colors without using another layer or embedding the
necessary logic in your business logic.
regards,
Lukas
|
|
|
|
|