blob: e6b4f299eb774991dd59214f52f88a2b4dd11be7 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
|
<?php
/**
* Create a form for data submission.
* Use this view for forms rather than creating a form tag in the wild as it provides
* extra security which help prevent CSRF attacks.
*
* @package Elgg
* @subpackage Core
* @author Curverider Ltd
* @link http://elgg.org/
*
* @uses $vars['body'] The body of the form (made up of other input/xxx views and html
* @uses $vars['method'] Method (default POST)
* @uses $vars['enctype'] How the form is encoded, default blank
* @uses $vars['action'] URL of the action being called
* @uses $vars['disable_security'] Force the securitytokens not to be added to this form (@todo what's the point??)
*
*/
$defaults = array(
'method' => 'POST',
'body' => '',
);
$overrides = array(
'tag' => 'form',
);
$disable_security = $vars['disable_security'];
unset($vars['disable_security']);
$args = array_merge($defaults, $vars, $overrides);
if ($disable_security != TRUE) {
$args['body'] .= elgg_view('input/securitytoken');
}
echo elgg_view('html/tag', $args);
|
