smarty/docs/en/programmers/api-variables/variable-security-settings.xml

<?xml version="1.0" encoding="iso-8859-1"?>
<!-- $Revision$ -->
     <sect1 id="variable.security.settings">
      <title>$security_settings</title>
      <para>
       These are used to override or specify the security settings when
<link linkend="variable.security">security is enabled</link>.
These are the possible settings:
      </para>
      <itemizedlist>
<listitem>
 <para>
  PHP_HANDLING - true/false. If set to true, the
  <link linkend="variable.php.handling">$php_handling</link>
  setting is not checked for security.
 </para>
</listitem>
<listitem>
 <para>
  IF_FUNCS - This is an array of the names of permitted PHP functions in
  <link linkend="language.function.if">IF</link> statements.
 </para>
</listitem>
<listitem>
 <para>
  INCLUDE_ANY - true/false. If set to true, any
         template can be included from the file system, regardless of the
  <link linkend="variable.secure.dir">$secure_dir</link> list.
 </para>
</listitem>
<listitem>
 <para>
  PHP_TAGS - true/false. If set to true,
  <link linkend="language.function.php">{php}{/php}</link>
  tags are permitted in the templates.
 </para>
</listitem>
<listitem>
 <para>
  MODIFIER_FUNCS - This is an array of the names of permitted
  PHP functions used as variable modifiers.
 </para>
</listitem>
<listitem>
 <para>
  ALLOW_CONSTANTS - true/false. If set to true, constants via
  <link linkend="language.variables.smarty.const">{$smarty.const.name}</link>
  are allowed in the templates. The defaults is set to
  "false" for security.
 </para>
</listitem>
      </itemizedlist>
</sect1>
<!-- Keep this comment at the end of the file
Local variables:
mode: sgml
sgml-omittag:t
sgml-shorttag:t
sgml-minimize-attributes:nil
sgml-always-quote-attributes:t
sgml-indent-step:1
sgml-indent-data:t
indent-tabs-mode:nil
sgml-parent-document:nil
sgml-default-dtd-file:"../../../../manual.ced"
sgml-exposed-tags:nil
sgml-local-catalogs:nil
sgml-local-ecat-files:nil
End:
vim600: syn=xml fen fdm=syntax fdl=2 si
vim: et tw=78 syn=sgml
vi: ts=1 sw=1
-->
banana split 2004-04-13 11:47:32 +00:00			`<?xml version="1.0" encoding="iso-8859-1"?>`
			`<!-- $Revision$ -->`
			`<sect1 id="variable.security.settings">`
			`<title>$security_settings</title>`
			`<para>`
			`These are used to override or specify the security settings when`
Lots of additional cross linking by Peter. 2005-05-23 15:43:01 +00:00			`<link linkend="variable.security">security is enabled</link>.`
			`These are the possible settings:`
banana split 2004-04-13 11:47:32 +00:00			`</para>`
			`<itemizedlist>`
Lots of additional cross linking by Peter. 2005-05-23 15:43:01 +00:00			`<listitem>`
			`<para>`
			`PHP_HANDLING - true/false. If set to true, the`
			`<link linkend="variable.php.handling">$php_handling</link>`
			`setting is not checked for security.`
			`</para>`
			`</listitem>`
			`<listitem>`
			`<para>`
			`IF_FUNCS - This is an array of the names of permitted PHP functions in`
			`<link linkend="language.function.if">IF</link> statements.`
			`</para>`
			`</listitem>`
			`<listitem>`
			`<para>`
			`INCLUDE_ANY - true/false. If set to true, any`
banana split 2004-04-13 11:47:32 +00:00			`template can be included from the file system, regardless of the`
Lots of additional cross linking by Peter. 2005-05-23 15:43:01 +00:00			`<link linkend="variable.secure.dir">$secure_dir</link> list.`
			`</para>`
			`</listitem>`
			`<listitem>`
			`<para>`
			`PHP_TAGS - true/false. If set to true,`
			`<link linkend="language.function.php">{php}{/php}</link>`
			`tags are permitted in the templates.`
			`</para>`
			`</listitem>`
			`<listitem>`
			`<para>`
			`MODIFIER_FUNCS - This is an array of the names of permitted`
			`PHP functions used as variable modifiers.`
			`</para>`
			`</listitem>`
			`<listitem>`
			`<para>`
			`ALLOW_CONSTANTS - true/false. If set to true, constants via`
			`<link linkend="language.variables.smarty.const">{$smarty.const.name}</link>`
			`are allowed in the templates. The defaults is set to`
			`"false" for security.`
			`</para>`
			`</listitem>`
banana split 2004-04-13 11:47:32 +00:00			`</itemizedlist>`
			`</sect1>`
			`<!-- Keep this comment at the end of the file`
			`Local variables:`
			`mode: sgml`
			`sgml-omittag:t`
			`sgml-shorttag:t`
			`sgml-minimize-attributes:nil`
			`sgml-always-quote-attributes:t`
			`sgml-indent-step:1`
			`sgml-indent-data:t`
			`indent-tabs-mode:nil`
			`sgml-parent-document:nil`
			`sgml-default-dtd-file:"../../../../manual.ced"`
			`sgml-exposed-tags:nil`
			`sgml-local-catalogs:nil`
			`sgml-local-ecat-files:nil`
			`End:`
			`vim600: syn=xml fen fdm=syntax fdl=2 si`
			`vim: et tw=78 syn=sgml`
			`vi: ts=1 sw=1`
			`-->`