MVC - Sanitizing data, where?

Posted by dierre on Stack Overflow See other posts from Stack Overflow or by dierre
Published on 2010-03-29T14:01:31Z Indexed on 2010/03/29 14:03 UTC
Read the original article Hit count: 254

Filed under:

mvc

|

model

|

controller

I'm using CakePHP but it's a question about the MVC pattern. I have in my form the input-text for the tags (separated by commas). To add the tags I've created a Tag model method that basically check if the tag exists and then add the new tag or just a new unit in the tag counter (the Tag model has these fields: id, name, slug, count). In the controller I explode the tags field and pass one tag at a time. The question is: where do I sanitize data? In the controller or in the model method? I think it should be in the controller because that's where I explode but in term of reusability I think I should sanitize data in the model. What do you think?

© Stack Overflow or respective owner

Related posts about mvc

ASP.NET MVC 3 - New Features

as seen on ASP.net Weblogs - Search for 'ASP.net Weblogs'
Introduction: ASP.NET MVC 3 just released by ASP.NET MVC team which includes some new features, some changes, some improvements and bug fixes. In this article, I will show you the new features of ASP.NET MVC 3. This will… >>> More
Migrating ASP.NET MVC 1.0 applications to ASP.NET MVC 2 RTM

as seen on ASP.net Weblogs - Search for 'ASP.net Weblogs'
Note: ASP.NET MVC 2 RTM isn’t yet released! But this tool will help you get your ASP.NET MVC 1.0 applications ready for when it is! I have updated the MVC App Converter to convert projects from ASP.NET MVC 1.0 to ASP.NET MVC 2 RTM. This should be last the last major change to the MVC App Converter… >>> More
Web Matrix released

as seen on Geeks with Blogs - Search for 'Geeks with Blogs'
Microsoft have now released Web Matrix (and ASP.NET MVC3 if you so inclined!) One signifcant utility is IIS Express which will replace Cassini It is worth noting that SP1 for VS2010 should be out in Q1. Links: http://www.hanselman.com/blog/ASPNETMVC3WebMatrixNuGetIISExpressAndOrchardReleasedTheMicrosoftJanuaryWebReleaseInContext… >>> More
Loading any MVC page fails with the error "An item with the same key has already been added."

as seen on Stack Overflow - Search for 'Stack Overflow'
I am having an intermittent issue that is appearing on one server only, and is causing all MVC pages to fail to load with the error "An item with the same key has already been added." Restarting the application pool fixes the issue, but until then, loading any mvc page throws the following exception: Event… >>> More
MVC HTML.RenderAction – Error: Duration must be a positive number

as seen on Stack Overflow - Search for 'Stack Overflow'
On my website I want the user to have the ability to login/logout from any page. When the user select login button a modal dialog will be present to the user for him to enter in his credentials. Since login will be on every page, I thought I would create a partial view for the login and add it to… >>> More

Related posts about model

Why model => model.Reason_ID turns to model =>Convert(model.Reason_ID)

as seen on Stack Overflow - Search for 'Stack Overflow'
I have my own html helper extension, wich I use this way <%=Html.LocalizableLabelFor(model => model.Reason_ID, Register.PurchaseReason) %> which declared like this. public static MvcHtmlString LocalizableLabelFor<T>(this HtmlHelper<T> helper, Expression<Func<T, object>>… >>> More
Rails model belongs to model that belongs to model but i want to use another name

as seen on Stack Overflow - Search for 'Stack Overflow'
Hello. This may be a stupid question but im just starting to learn Rail thats why i am asking thsi question. I have one model called "User" which handles all the users in my community. Now i want to add a guestbook to every user. So i created a model called "user_guestbook" and inserted this into… >>> More
AngularJS on top of ASP.NET: Moving the MVC framework out to the browser

as seen on Simple Talk - Search for 'Simple Talk'
Heavily drawing inspiration from Ruby on Rails, MVC4’s convention over configuration model of development soon became the Holy Grail of .NET web development. The MVC model brought with it the goodness of proper separation of concerns between business logic, data, and the presentation logic. However… >>> More
strange data annotations issue in MVC 2

as seen on Stack Overflow - Search for 'Stack Overflow'
Hello, I came across something strange when creating an edit form with MVC 2. i realised that my error messages come up on form sumission even when i have filled ut valid data! i am using a buddy class which i have configured correctly ( i know that cos i can see my custom errors). Here is the code… >>> More
How to disabled the input,textarea,select using this code..

as seen on Stack Overflow - Search for 'Stack Overflow'
Hello friends I am using this code in my view.. <%@ Control Language="C#" Inherits="System.Web.Mvc.ViewUserControl<NorthernTrust.ATP.iTool.Core.Business.Entities.Exceptions.PricingMassEditBE>" %> <script type="text/javascript"> $("#PricingEditExceptions").find("input, select… >>> More