PHP - Frameworks, ORM, Encapsulation.
Posted
by Ian
on Stack Overflow
See other posts from Stack Overflow
or by Ian
Published on 2010-04-24T11:31:03Z
Indexed on
2010/04/24
11:33 UTC
Read the original article
Hit count: 264
Programming languages/environments aside, are there many developers who are using a framework in PHP, ORM and still abide by encapsulation for the DAL/BLL? I'm managing a team of a few developers and am finding that most of the frameworks require me to do daily code inspection because my developers are using the built in ORM.
Right now, I've been using a tool to generate the classes and CRUD myself, with an area for them to write additional queries/functions. What's been happening though, is they are creating vulnerabilities by not doing proper checks on data permission, or allowing the key fields to be manipulated in the form.
Any suggestions, other than get a new team and a new language (I've seen Python/Ruby frameworks have the same issues).
© Stack Overflow or respective owner