The views tutorials collection is of a written tutorials and not of videos tutorials as yours.
You can add your videos (from blip.tv) to drupalove.com videos by: Submit-> add drupal video (you need to register first)
This is a helpful post, and thanks for taking the time to do it. However the techniques in this video are vulnerable to XSS attacks because the data is not sanitized prior to output. Never, never, never print variables directly in the template without sanitizing them first. Developers should refer to the "Handle text in a secure fashion" page at http://drupal.org/node/28984 for more info.
Just as a point of fact, concatenating strings is a surefire way to get your site exposed to XSS (Cross Site Scripting). You should never, never ever concatenate strings in this way without sanitization. This tutorial basically teaches you how to expose your site and how not to have anything translated in your installation should you choose to go multilingual.
The proper syntax for what this person is showing would be:
print t("My favorite food is %food", array("%food", $account->field_favorite_food));
It's great that you posted this, but it shows a terrible ignorance of basic security knowledge.
You cannot print unfiltered data in the manner that you've demonstrated.
For example, you print out the raw value of $account->profile_favorite_food. Fortunately, your user chose to enter something safe, such as "Pizza". Imagine, however, that your user is not a nice person, and instead chose to enter something like "Pizzaalert('XSS!');".
Your example leaves users completely open to XSS attacks. The proper way to do this is to use Drupal's output filters:
In this podcast you mention in passing that there are various template files you can use when theming a view and that you need to pick the one you use carefully.
I'm interested to know what are the different ones and how I go about choosing which one to create or use, do you know where I might find this information
Great video. I am new to Drupal (4-5 weeks) and have seen a few good videos on this subject, but this one definitely goes, above and beyond just the basic use of arguments. I will need to go back and watch it a few time for the more advanced stuff, but I am well on my way to understanding arguments within Views.
One thing I need to do is to show a list of patients (per clinician - role), which then need to link to a history of prescription changes and the same SMS reminders. I have a list of patients, but was wondering whether it is possible within views to add custom links within a Table view.
Thank you so much for this podcast! I'd been messing around with taxonomy page theming for hours and was about to give up until I found this video. Perfection.
You actually don't need to create a new content type for the taxonomy descriptions— you can use the description that's included in the native taxonomy metadata. Just include these lines in taxonomy_term_page.tpl.php (or in your view header):
Not a tutorial just a demonstration of what panels can do.
The views tutorials collection is of a written tutorials and not of videos tutorials as yours.
You can add your videos (from blip.tv) to drupalove.com videos by: Submit-> add drupal video (you need to register first)
each training should have a reference of previous video button.
I need to download videos. Can you help me?
May I suggest a couple of tutorials made by me? Please check them out and include in list if you like them.
http://www.noparrots.com/content/mini-case-study-creating-a-bar-chart-in...
(Views Charts + Rules)
http://www.noparrots.com/content/module-introduction-views-dynamic-fields
(Module introduction)
Thanks,
This is a helpful post, and thanks for taking the time to do it. However the techniques in this video are vulnerable to XSS attacks because the data is not sanitized prior to output. Never, never, never print variables directly in the template without sanitizing them first. Developers should refer to the "Handle text in a secure fashion" page at http://drupal.org/node/28984 for more info.
Thanks,
Chris
Just as a point of fact, concatenating strings is a surefire way to get your site exposed to XSS (Cross Site Scripting). You should never, never ever concatenate strings in this way without sanitization. This tutorial basically teaches you how to expose your site and how not to have anything translated in your installation should you choose to go multilingual.
The proper syntax for what this person is showing would be:
print t("My favorite food is %food", array("%food", $account->field_favorite_food));
For more information on the t() function, one should visit http://api.drupal.org/api/function/t
It's great that you posted this, but it shows a terrible ignorance of basic security knowledge.
You cannot print unfiltered data in the manner that you've demonstrated.
For example, you print out the raw value of $account->profile_favorite_food. Fortunately, your user chose to enter something safe, such as "Pizza". Imagine, however, that your user is not a nice person, and instead chose to enter something like "Pizzaalert('XSS!');".
Your example leaves users completely open to XSS attacks. The proper way to do this is to use Drupal's output filters:
<?php echo check_plain($account->profile_favorite_food); ?>
This will neutralize that variable and make it safe for output.
http://drupal.org/writing-secure-code
Very useful, lots of things at one place. Thank you,
Kuldip Gohil
Awesome. Great Effort.
Thank you !
Thanks, url corrected.
Hi, thanks for this huge list. It'll sure be useful.
I see a typo : url for "Drupal: How to create Views 2 filters for your new module from www.examiner.com" is truncated. Here is the correct url
http://www.examiner.com/open-source-in-national/drupal-how-to-create-vie...
Thanks,
Opi
thanks
36 minutes ago, I didn't know what arguments were - now I feel like I completely do! Great job!
Hi its easy . Clone your default page.tpl.php and replace
<?php if ($content): ?>
<?php print $content; ?>
<?php endif; ?>
with the above code.
www.re-present.com
It was removed for copyright violations :/
Great!
Hey Bob
Brilliant podcast, helped me out loads.
In this podcast you mention in passing that there are various template files you can use when theming a view and that you need to pick the one you use carefully.
I'm interested to know what are the different ones and how I go about choosing which one to create or use, do you know where I might find this information
Ta
Chris
Thanks for posting this!
'Home, Videos, Home, Videos', cool, thanks for waste my time.
Great video. I am new to Drupal (4-5 weeks) and have seen a few good videos on this subject, but this one definitely goes, above and beyond just the basic use of arguments. I will need to go back and watch it a few time for the more advanced stuff, but I am well on my way to understanding arguments within Views.
One thing I need to do is to show a list of patients (per clinician - role), which then need to link to a history of prescription changes and the same SMS reminders. I have a list of patients, but was wondering whether it is possible within views to add custom links within a Table view.
thanks and a great video
Andy
Thank you so much for this podcast! I'd been messing around with taxonomy page theming for hours and was about to give up until I found this video. Perfection.
You actually don't need to create a new content type for the taxonomy descriptions— you can use the description that's included in the native taxonomy metadata. Just include these lines in taxonomy_term_page.tpl.php (or in your view header):
$tid = (int)arg(2);
$term = taxonomy_get_term($tid);
print (filter_xss_admin($term->description));
Again, thanks so much!
Great video but low volume. Thanks for sharing.
thanks for the video. I had given up on doing this very thing and now you made it so simple.
Maybe you can help with this. How can I make those taxonomy terms into links that point to other taxonomy terms like this:
clicking on apple(2) brings you to a listing of macintosh and gala clicking on Gala takes you to the node.
thanks for the great vid.
emk