Hi all
I've recently released two modules to CPAN which are of relevance to
mod_perl developers, one as the author and one as the maintainer.
I realise this is a blatant plug, but these modules have been useful to
me in my web-app work, and so there is a good chance that they will be
useful to others.
Config::Loader:
---------------
- loads a configuration directory tree (with files containing data in
YAML, JSON, XML, Config::General, INI or Perl)
- allows you to merge in local config (for instance when working
on a dev machine instead of in production) without accidentally
affecting your main config
- makes the most of shared memory by loading all your config data
at startup
- OO or functional interface
- optional Template Toolkit style key retrieval eg
$host = C('app.db.host.1')
- callbacks to allow you to customise the loading process
to suit your needs
http://search.cpan.org/~drtech/Config-Loader-1.11/
HTML::StripScripts
------------------
- used to strip XSS scripting from user submitted HTML
- outputs valid HTML (cleans up nesting, context of tags etc)
- handles the exploits listed at http://ha.ckers.org/xss.html
- by default, configured to be safe
- very customisable via rules including regexes and callbacks
eg
- replace <font> tags with <style> tags
- allow local href's only to certain paths in your site etc
http://search.cpan.org/~drtech/HTML-StripScripts-1.00/
use HTML::StripScripts::Parser to feed tokens to HTML::StripScripts
http://search.cpan.org/~drtech/HTML-StripScripts-Parser-1.00/
I hope this helps others, and if anybody has any suggestions, please
feed them back to me
Clint
