StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

PO
primarykey
Id
4136629
data
AcceptedAnswerId
0
AnswerCount
0
ClosedDate
CommentCount
2
CommunityOwnedDate
CreationDate
2010-11-09T17:30:45.450
FavoriteCount
0
LastActivityDate
2010-11-09T17:30:45.450
LastEditDate
LastEditorUserId
0
OwnerUserId
90090
ParentId
4136448
PostTypeId
2
Score
1
ViewCount
0
LastEditorDisplayName
text
Body
If you're aiming for security and you want to let them to write functions, then the short answer is: no. Essentially you're asking for a PHP sandbox which will let you constrain what code can be executed. PHP would have to support this at a fundamental level for it to work. For example, supposing you took the approach of saying "I only allow the user to write a function named 'foo'". Inside that function, though the user can do all kinds of bad things like making system calls, downloading other code and executing it, etc. In order to prevent this you'd need to implement checks at a much lower level in the system. If you're willing to restrict the scope only to variable definitions then yes you can do it. You can use token_get_all() and token_name() to examine the file to make sure that it doesn't have any code that you don't want in it. For example: <pre><code>foreach (token_get_all(file_get_contents("uploadedfile.php")) as $token) { if (is_array($token)) { echo token_name($token[0]), " "; } else { echo $token; } } </code></pre> If you don't like any tokens you see, don't include the file. You could theoretically guard against bad functions this way as well, but it'll require a fair amount of effort to properly parse the file and make sure that they're not doing something bad. references: <ul> <li><a href="http://www.php.net/manual/en/function.token-get-all.php" rel="nofollow">http://www.php.net/manual/en/function.token-get-all.php</a></li> <li><a href="http://www.php.net/manual/en/function.token-name.php" rel="nofollow">http://www.php.net/manual/en/function.token-name.php</a></li> <li><a href="http://www.php.net/manual/en/tokens.php" rel="nofollow">http://www.php.net/manual/en/tokens.php</a></li> </ul>
Tags
Title
singulars
PostAcceptedAnswerId
1. This table or related slice is empty.
PostParentId
1. POMaking Only Specific Functions and Variables Available in PHP
 singulars
 PostTypePostTypeId
 PTQuestion
PostTypePostTypeId
1. PTAnswer
UserLastEditorUserId
1. This table or related slice is empty.
UserOwnerUserId
1. USbharat
plurals
PostLinksPostIdRelatedPostId
1. This table or related slice is empty.
PostLinksRelatedPostIdPostId
1. This table or related slice is empty.
PostsAcceptedAnswerId
1. POMaking Only Specific Functions and Variables Available in PHP
 singulars
 PostTypePostTypeId
 PTQuestion
PostsParentIdCreationDate
1. This table or related slice is empty.
VotesPostIdCreationDate
1. VO
 singulars
 PostPostId
 PO
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTAcceptedByOriginator
2. VO
 singulars
 PostPostId
 PO
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
CommentsPostId
1. COWould that guard against variable variables too?
 singulars
 PostPostId
 PO
 UserUserId
 USMichael Clerx
2. COIf you are asking me than yes, I also want that security for variables also. Because you know there lots of information in $_SERVER, and other variables which I dont remember now.
 singulars
 PostPostId
 PO
 UserUserId
 UStcak

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.