Class AdminHttpViewController

This class contains some helper methods for handling view requests. Be careful always when outputting raw user data to HTML or when handling POST requests because insufficient protection will lead to XSS and CSRF vulnerabilities.

HttpViewController implements HttpViewControllerInterface

AdminHttpViewController implements AdminStatusOnlyInterface

Direct known subclasses

AbstractModuleCenterModuleController, AdminFavoritesAjaxController, LawsController, MaxFileSizeController, ModuleCenterController, NewAttributesController, OrdersModalsAjaxController, OrdersOverviewAjaxController, OrdersOverviewController, OrderTooltipController, PackedDownloadController, PayPalConfigurationController, AdminInfoBoxAjaxController, ShipcloudController, ShopKeyController, TemplateConfigurationController, UserConfigurationController, AfterbuyAjaxController, DashboardController, DynamicShopMessagesController, EmailsController, EmbeddedModuleController, ImageProcessingController, InvoicesController

Indirect known subclasses

Package: Http
Category: System
Link: http://en.wikipedia.org/wiki/Cross-site_scripting
Link: http://en.wikipedia.org/wiki/Cross-site_request_forgery
Implements: HttpViewControllerInterface
Located at Services/System/Http/AdminHttpViewController.inc.php

Methods summary

`public`	# `validateCurrentAdminStatus( )` Makes sure that the admin status is currently given in session Makes sure that the admin status is currently given in session Throws LogicException Implementation of `AdminStatusOnlyInterface::validateCurrentAdminStatus()`

Methods inherited from HttpViewController

__construct(), _callActionMethod(), _getPostData(), _getPostDataCollection(), _getQueryParameter(), _getQueryParametersCollection(), _render(), _validatePageToken(), actionDefault(), proceed()

Properties summary

Properties inherited from HttpViewController

$assets, $contentView, $httpContextReader, $httpResponseProcessor, $postDataArray, $queryParametersArray

Packages

Classes