3 – security
Laravel Security was created by, and is maintained by Graham Campbell, and is a port of the security class from CodeIgniter 3 for Laravel 5. This package is best used wrapped in my Laravel Binput package.
Installation
PHP 5.5+ or HHVM 3.6+, and Composer are required.
To get the latest version of Laravel Security, simply add the following line to the require block of your composer.json
file:
"graham-campbell/security": "~3.2"
You’ll then need to run composer install
or composer update
to download it and have the autoloader updated.
Once Laravel Security is installed, you need to register the service provider. Open up config/app.php
and add the following to the providers
key.
'GrahamCampbell\Security\SecurityServiceProvider'
You can register the Security facade in the aliases
key of your config/app.php
file if you like.
'Security' => 'GrahamCampbell\Security\Facades\Security'
Configuration
Laravel Security supports optional configuration.
To get started, you’ll need to publish all vendor assets:
$ php artisan vendor:publish
This will create a config/security.php
file in your app that you can modify to set your configuration. Also, make sure you check for changes to the original config file in this package between releases.
There is one config option:
Evil attributes
This option ('evil'
) defines the evil attributes and they will be always be removed from the input