On Sun, Mar 10, 2013 at 11:44 AM, David Golden <[email protected]> wrote: > On Sun, Mar 10, 2013 at 12:01 PM, Rik Brown <[email protected]> wrote: > >> I think it could be useful if the config would be also accessible. Or is > >> there a reason this would not be a good idea? > > I wouldn't want things like database password to be automatically > available. Then a template bug could cause a huge security hole. > > I think if you want to make config data available in templates, it's > be to do that yourself, explicitly and limit it only to keys you need.
Be it good or bad, you can access config with 'settings' keyword in templates. I'm not sure what but some of the variables are removed/hidden in error pages. I'm not sure about them in other areas. see 'Template Tokens' in https://metacpan.org/module/Dancer::Template::Abstract
_______________________________________________ dancer-users mailing list [email protected] http://lists.preshweb.co.uk/mailman/listinfo/dancer-users
