WebSVN – eFlore/Applications.cel – Diff – /trunk/jrest/services/Cel.php

 abstract class Cel {
 	const TYPE_OBS = 'observation';
 	const TYPE_IMG = 'image';
+	public $config;
-	public $config;
+	private $ressources;
 	private $parametres;
 	protected $bdd;
 	protected $messages = array();
 	private function recupererParametresUrl() {
 		if (isset($_GET)) {
 			$get_params = array('orderby', 'distinct', 'start', 'limit', 'formatRetour');
 			foreach ($get_params as $get) {
 				if (isset($_GET[$get])) {
-					$verifier = array('NULL', "\n", "\r", "\\", "'", '"', "\x00", "\x1a", ';');
-					$_GET[$get] = strip_tags(str_replace($verifier, '', $_GET[$get]));
+					$_GET[$get] = $this->verifierSecuriteParametreUrl($_GET[$get]);
 					if ($_GET[$get] != '') {
 						if (!isset($this->$get)) {
 							$this->$get = $_GET[$get];
 						} else {
 							$e = "Impossible d'ajouter l'attribut $get à la classe du service car elle possède déjà un attribut nommé : $get";
+				}
+			}
+		}
+	}
+	protected function verifierSecuriteParametreUrl($param) {
+		$verifier = array('NULL', "\n", "\r", "\\", "'", '"', "\x00", "\x1a", ';');
+		$param = strip_tags(str_replace($verifier, '', $param));
+		return $param;
+	}
 	private function definirParametresUrlParDefaut() {
 		if (!isset($this->start)) {
 			$this->start = 0;
+		}

Subversion Repositories eFlore/Applications.cel