Hello, I want to thank Piotras for his help on getting me to understand the pages vs articles thingy a few days ago. I have now managed to hack together something that serves articles from the topic structure as if they where pages. Really neat, and rather clean code thanks to the functions of argv/argc and active pages capabilities of midgard.
It's a though ride to get through the design matters in midgard but I'm learning to love it. =) Now, I serve images attached to topics based on a virtual archive. If i have a uri "/xyxxy/files/img.png" the page code checks if argv[argc - 2] == "files" and if that is true it tries to serve the attacment 'img.png' from the topic 'xyxxy'. Is that a good solution, or is there a smarter way to serve attachments from articles? Also, is there codewise any danger in just taking user uri and throwing it at mgd_get_article_by_name or $obj->serveattachment? Can a evil hacker put php code or mysql commands in the url and get them executed: "/xyxxy/"'evilPhp()?"drop table blob"/img.png" ? Could there be buffer overflow issues in long uri:s or smth? Thanks again for all help from the list. It's just marvellous =) -- Fredrik Jonson [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
