security - Laravel form creation exposes schema -
security - Laravel form creation exposes schema -
in laravel, creating form create new record in database. in controller, saving input info database straight using input::all(). so, work; creating form elements same names database fields;
{{ form::label('name', 'project name:') }} {{ form::text('name', null, ['class' => 'form-control']) }} so, if looks @ output html, easy guess project table , fields within table.
what know is: normal practice? okay implement this? laravel experts using best practice situation?
with laravel there no problem if knows name of fields, in each form laravel create hidden field contain token not can send post requests site
security laravel laravel-4
Comments
Post a Comment