[core] unexpected input generates a fail

because paranoïa is the way to security ! Should this be optional ? Signed-off-by: Pierre Mazière <pierre.maziere@gmx.com>
2016-08-25 17:52:44 +02:00 · 2016-08-25 17:52:44 +02:00 · 3f36ca2a9b
commit 3f36ca2a9b
parent 2670a0e400
1 changed files with 5 additions and 0 deletions
--- a/lib/Bridge.php
+++ b/lib/Bridge.php
@ -146,8 +146,10 @@ abstract class BridgeAbstract implements BridgeInterface {
    protected function validateData(&$data){
        $validated=true;
        foreach($data as $name=>$value){
+            $registered=false;
            foreach($this->parameters as $context=>$set){
                if(array_key_exists($name,$set)){
+                    $registered=true;
                    if(!isset($set[$name]['type'])){
                        $set[$name]['type']='text';
                    }
@ -197,6 +199,9 @@ abstract class BridgeAbstract implements BridgeInterface {
                    }
                }
            }
+            if(!$registered){
+                $validated=false;
+            }
        }

        return $validated;