templates php-free and users levels non-cryptic

dragontiger
(@dragontiger)

19 years ago

Hello,

I have tried every blog/cms system listed on hotscripts.com and opensourcecms.com (few hundreds), always with newbie-user-on-my-mind, and have to say, I (almost) prefer WP, especially after introducing pages, not only articles/categories, but there are still two issues which effectively stops me in going with WP:

1. templates are still messed with php code (security! in multiuser environment)
2. granular privileges and users levels are still cryptic (numbers)

all above (2) issues/features are really well implemented/resolved in many less mature than WP systems, to name few: lucidcms.net , cmsmadesimple.org or (I’m sorry 😉 textpattern.com

there are many posts on this forum on this subject (or near it) but these issues are still untouched

can you say something yes/no about plans on changing it to more mature level ?

Best,
Oscar

Viewing 7 replies - 1 through 7 (of 7 total)

prissed
(@prissed)

19 years ago

Are you using the Multi-user version?
http://mu.wordpress.org/

Moderator James Huff
(@macmanx)

Volunteer Moderator

19 years ago

1. templates are still messed with php code (security! in multiuser environment)

There is no way to make a dynamic site (blog or CMS) without PHP code. PHP is a dynamic language which uses queries, commands, etc. to display information.

ifelse
(@ifelse)

19 years ago

There is no way to make a dynamic site (blog or CMS) without PHP code. PHP is a dynamic language which uses queries, commands, etc. to display information.
That’s far from true. There are many blog/CMS which are based on a true templating system in which the underlying driving code and template design code are fully segregated. I, myself, designed such a system back in the days before WP.

Whilst both approaches have their pros and cons (and the fact that I’m using WP myself means that I’m not adverse to WP approach), to state that such is the only solution is a bit of a misnomer.

That said, let’s go back to the OP’s queries.
a) It would be extremely unlikely that there will be any change in this area. You’ll have to assess whether this is something that you can live with. With regards to security, appropriate assignation of user_levels should mitigate any such risk.
b) They’re slightly cryptic but it’s well documented Have a look at the codex and if you have any queries, we’ll try and help out.

Moderator James Huff
(@macmanx)

Volunteer Moderator

19 years ago

That’s far from true. There are many blog/CMS which are based on a true templating system in which the underlying driving code and template design code are fully segregated.

Oh … well I like PHP better. It’s ummm … universal… yeah… ::hiding::

ifelse
(@ifelse)

19 years ago

Oh … well I like PHP better.
Me too:-)

Thread Starter dragontiger
(@dragontiger)

19 years ago

Thanks for the answers.

ifelse:

a) I understand changing it to template system like textpattern or lucidcms has, would ‘break’ many WP users implementations if they love the ability to dig in pure PHP code there, but there is no way to get even minimal security with this in multiuser-environment – I mean my setup where many users have their systems running on one Apache, with the same uid:gid, without any chroot, and where they should have only web-access (no ftp) and because of it should never had ability to include own PHP code in templates

b) I do understand it is documented, but this is the same story as with RTE like TinyMCE or HTMLArea – I agree textile is better, but never for those ‘newbie-user-on-my-mind’, and it seems to be similar problem in WP , TXP and other systems communities – you have geek-user rather than newbie-end-user on your mind – this is my personal opinion of course, but I’m not so sure it should go this way

Cheers,
Oscar

notthatugly
(@notthatugly)

19 years ago

Would the EasyTags plugin be any help to you? There really is zilch chance of anything like this being included in the core. The developers like making people engage with raw PHP; they think it’s educational.