diff options
author | Robin Sowell <robin.sowell@ellislab.com> | 2010-03-18 14:44:55 +0100 |
---|---|---|
committer | Robin Sowell <robin.sowell@ellislab.com> | 2010-03-18 14:44:55 +0100 |
commit | 66a3fc0a7dc6ae84da4a1e852e4458fda7714567 (patch) | |
tree | b3af2e9f7e8f830b2f00029aae9c648c64f388d0 /user_guide | |
parent | 4e8d66aeea7f03b75df5a387a54fce1889834ded (diff) |
Added a $xss_clean class variable to the XMLRPC library, enabling control over the use of the Security library's xss_clean() method.
Diffstat (limited to 'user_guide')
-rw-r--r-- | user_guide/changelog.html | 1 | ||||
-rw-r--r-- | user_guide/libraries/xmlrpc.html | 2 |
2 files changed, 3 insertions, 0 deletions
diff --git a/user_guide/changelog.html b/user_guide/changelog.html index 69d7d4b88..5d2ca2f39 100644 --- a/user_guide/changelog.html +++ b/user_guide/changelog.html @@ -89,6 +89,7 @@ Hg Tag: </p> <li>Added HTTP headers and Config information to the <a href="general/profiling.html">Profiler</a> output.</li> <li>Added Chrome and Flock to the list of detectable browsers by <kbd>browser()</kbd> in the <a href="libraries/user_agent.html">User Agent Class</a>.</li> <li>The <a href="libraries/unit_testing.html">Unit Test Class</a> now has an optional "notes" field available to it, and allows for discrete display of test result items using <kbd>$this->unit->set_test_items()</kbd>.</li> + <li>Added a <kbd>$xss_clean</kbd> class variable to the XMLRPC library, enabling control over the use of the Security library's <kbd>xss_clean()</kbd> method.</li> </ul> </li> <li>Database diff --git a/user_guide/libraries/xmlrpc.html b/user_guide/libraries/xmlrpc.html index 9f163ae58..6e929f1fb 100644 --- a/user_guide/libraries/xmlrpc.html +++ b/user_guide/libraries/xmlrpc.html @@ -200,6 +200,8 @@ server will load the <dfn>My_blog</dfn> class and call the <dfn>update_entry</df <p>The function names in the above example are arbitrary. You'll decide what they should be called on your server, or if you are using standardized APIs, like the Blogger or MetaWeblog API, you'll use their function names.</p> + +<p>There are two additional configuration keys you may make use of when initializing the server class: <var>debug</var> can be set to TRUE in order to enable debugging, and <var>xss_clean</var> may be set to FALSE to prevent sending data through the Security library's xss_clean function. <h2>Processing Server Requests</h2> |