diff options
Diffstat (limited to 'views/installation/input/hidden.php')
| -rw-r--r-- | views/installation/input/hidden.php | 18 |
1 files changed, 18 insertions, 0 deletions
diff --git a/views/installation/input/hidden.php b/views/installation/input/hidden.php new file mode 100644 index 000000000..dd5c8bb98 --- /dev/null +++ b/views/installation/input/hidden.php @@ -0,0 +1,18 @@ +<?php +/** + * Create a hidden data field + * Use this view for forms rather than creating a hidden tag in the wild as it provides + * extra security which help prevent CSRF attacks. + * + * @package Elgg + * @subpackage Core + * @author Curverider Ltd + * @link http://elgg.org/ + * + * @uses $vars['value'] The current value, if any + * @uses $vars['js'] Any Javascript to enter into the input tag + * @uses $vars['internalname'] The name of the input field + * + */ +?> +<input type="hidden" <?php echo $vars['js']; ?> name="<?php echo $vars['internalname']; ?>" value="<?php echo htmlentities($vars['value'], ENT_QUOTES, 'UTF-8'); ?>" />
\ No newline at end of file |