Comments on: Models In The Zend Framework – Part 2 http://www.techfounder.net/2008/05/21/models-in-the-zend-framework-part-2/ Blog about web development and Internet entrepreneurship Sat, 04 Feb 2012 15:46:41 +0000 hourly 1 http://wordpress.org/?v=3.1 By: Grantus Maximus Web Blog » Wheres the Model in Zend Frameworks MVC? http://www.techfounder.net/2008/05/21/models-in-the-zend-framework-part-2/comment-page-1/#comment-714 Grantus Maximus Web Blog » Wheres the Model in Zend Frameworks MVC? Fri, 05 Dec 2008 13:07:36 +0000 http://www.techfounder.net/?p=24#comment-714 [...] just about to start my next and decided to see if there is a better solution out there… The best article I’ve found was at techfounder and was proposing the second option as well and had some good [...] [...] just about to start my next and decided to see if there is a better solution out there… The best article I’ve found was at techfounder and was proposing the second option as well and had some good [...]

]]> By: Wheres the Model in Zend Frameworks MVC? | Child of the Machine http://www.techfounder.net/2008/05/21/models-in-the-zend-framework-part-2/comment-page-1/#comment-713 Wheres the Model in Zend Frameworks MVC? | Child of the Machine Fri, 05 Dec 2008 13:02:54 +0000 http://www.techfounder.net/?p=24#comment-713 [...] just about to start my next and decided to see if there is a better solution out there… The best article I’ve found was at techfounder and was proposing the second option as well and had some good examples. I’d be interested to [...] [...] just about to start my next and decided to see if there is a better solution out there… The best article I’ve found was at techfounder and was proposing the second option as well and had some good examples. I’d be interested to [...]

]]> By: Eran Galperin http://www.techfounder.net/2008/05/21/models-in-the-zend-framework-part-2/comment-page-1/#comment-80 Eran Galperin Fri, 11 Jul 2008 19:34:41 +0000 http://www.techfounder.net/?p=24#comment-80 Yes, you are absolutely correct - thanks for pointing that out :) As can be inferred, I used example code from my start-up Octabox in which I employ this solution extensively. Yes, you are absolutely correct – thanks for pointing that out :)

As can be inferred, I used example code from my start-up Octabox in which I employ this solution extensively.

]]> By: Eran Galperin http://www.techfounder.net/2008/05/21/models-in-the-zend-framework-part-2/comment-page-1/#comment-962 Eran Galperin Fri, 11 Jul 2008 19:34:00 +0000 http://www.techfounder.net/?p=24#comment-962 Yes, you are absolutely correct - thanks for pointing that out :) As can be inferred, I used example code from my start-up Octabox in which I employ this solution extensively. Yes, you are absolutely correct – thanks for pointing that out :)

As can be inferred, I used example code from my start-up Octabox in which I employ this solution extensively.

]]> By: Doug http://www.techfounder.net/2008/05/21/models-in-the-zend-framework-part-2/comment-page-1/#comment-79 Doug Fri, 11 Jul 2008 15:56:33 +0000 http://www.techfounder.net/?p=24#comment-79 Hey, this was exactly what I was looking for. Coming from a Rails background I had trouble wrapping my head around how to put validation in the models. ZF's approach is so much more decoupled than Rails' model/validation mechanism. Pretty interesting. One question: The first code example is with a class named Techfounder_Db_Model, while the second class, which adds the update and insert methods, is named Octabox_Db_Model. That should be Techfounder_Db_Model too, correct? Hey, this was exactly what I was looking for. Coming from a Rails background I had trouble wrapping my head around how to put validation in the models. ZF’s approach is so much more decoupled than Rails’ model/validation mechanism. Pretty interesting. One question: The first code example is with a class named Techfounder_Db_Model, while the second class, which adds the update and insert methods, is named Octabox_Db_Model. That should be Techfounder_Db_Model too, correct?

]]> By: Doug http://www.techfounder.net/2008/05/21/models-in-the-zend-framework-part-2/comment-page-1/#comment-961 Doug Fri, 11 Jul 2008 15:56:00 +0000 http://www.techfounder.net/?p=24#comment-961 Hey, this was exactly what I was looking for. Coming from a Rails background I had trouble wrapping my head around how to put validation in the models. ZF's approach is so much more decoupled than Rails' model/validation mechanism. Pretty interesting. One question: The first code example is with a class named Techfounder_Db_Model, while the second class, which adds the update and insert methods, is named Octabox_Db_Model. That should be Techfounder_Db_Model too, correct? Hey, this was exactly what I was looking for. Coming from a Rails background I had trouble wrapping my head around how to put validation in the models. ZF’s approach is so much more decoupled than Rails’ model/validation mechanism. Pretty interesting. One question: The first code example is with a class named Techfounder_Db_Model, while the second class, which adds the update and insert methods, is named Octabox_Db_Model. That should be Techfounder_Db_Model too, correct?

]]> By: matthijs http://www.techfounder.net/2008/05/21/models-in-the-zend-framework-part-2/comment-page-1/#comment-31 matthijs Mon, 26 May 2008 08:58:18 +0000 http://www.techfounder.net/?p=24#comment-31 It is a pretty difficult subject (also for me). I just remembered this article http://www.webappsec.org/projects/articles/091007.shtml which explains the sql injection issue in more detail. An excellent read. And together with the examples you can test locally, it makes it obvious that it's not as simple as use function A to protect for B or C for D, but there's a lot more to think about for every query one writes. So me saying mysql_real_escape_string() is pretty bullet-proof is not entirely true .. I must also stand corrected. It is a pretty difficult subject (also for me). I just remembered this article http://www.webappsec.org/projects/articles/091007.shtml
which explains the sql injection issue in more detail. An excellent read. And together with the examples you can test locally, it makes it obvious that it’s not as simple as use function A to protect for B or C for D, but there’s a lot more to think about for every query one writes. So me saying mysql_real_escape_string() is pretty bullet-proof is not entirely true .. I must also stand corrected.

]]> By: matthijs http://www.techfounder.net/2008/05/21/models-in-the-zend-framework-part-2/comment-page-1/#comment-960 matthijs Mon, 26 May 2008 08:58:00 +0000 http://www.techfounder.net/?p=24#comment-960 It is a pretty difficult subject (also for me). I just remembered this article http://www.webappsec.org/projects/articles/091007.shtml which explains the sql injection issue in more detail. An excellent read. And together with the examples you can test locally, it makes it obvious that it's not as simple as use function A to protect for B or C for D, but there's a lot more to think about for every query one writes. So me saying mysql_real_escape_string() is pretty bullet-proof is not entirely true .. I must also stand corrected. It is a pretty difficult subject (also for me). I just remembered this article http://www.webappsec.org/projects/articles/091007.shtml
which explains the sql injection issue in more detail. An excellent read. And together with the examples you can test locally, it makes it obvious that it’s not as simple as use function A to protect for B or C for D, but there’s a lot more to think about for every query one writes. So me saying mysql_real_escape_string() is pretty bullet-proof is not entirely true .. I must also stand corrected.

]]> By: Eran Galperin http://www.techfounder.net/2008/05/21/models-in-the-zend-framework-part-2/comment-page-1/#comment-30 Eran Galperin Mon, 26 May 2008 08:20:18 +0000 http://www.techfounder.net/?p=24#comment-30 I've been reading about SQL injection attacks recently and it appears that you might be right. It's better to use the Zend_Db intrinsic quoting functions that use the real_escape_string methods of the different adapters. I’ve been reading about SQL injection attacks recently and it appears that you might be right. It’s better to use the Zend_Db intrinsic quoting functions that use the real_escape_string methods of the different adapters.

]]> By: Eran Galperin http://www.techfounder.net/2008/05/21/models-in-the-zend-framework-part-2/comment-page-1/#comment-959 Eran Galperin Mon, 26 May 2008 08:20:00 +0000 http://www.techfounder.net/?p=24#comment-959 I've been reading about SQL injection attacks recently and it appears that you might be right. It's better to use the Zend_Db intrinsic quoting functions that use the real_escape_string methods of the different adapters. I’ve been reading about SQL injection attacks recently and it appears that you might be right. It’s better to use the Zend_Db intrinsic quoting functions that use the real_escape_string methods of the different adapters.

]]>