Fix Docs: explain blitz.auto_escape ini parameter, pseudo-filters and anti-XSS approach

alexeyrybak / blitz

Blitz templates, template engine extension for PHP

Other

92 stars 42 forks source link

Fix Docs: explain blitz.auto_escape ini parameter, pseudo-filters and anti-XSS approach #64

Open alexeyrybak opened 5 years ago

alexeyrybak commented 5 years ago

Explain: (1) blitz.auto_escape (2) pseudo-filters (3) anti-XSS practices {{ $html | raw }} when blitz.auto_escape = 1 {{ $var | escape }} when blitz.auto_escape = 0 (0 by default!) {{ $var | nl2br }}