WordPress.org

Ready to get started?Download WordPress

Forums

templates php-free and users levels non-cryptic (8 posts)

  1. dragontiger
    Member
    Posted 9 years ago #

    Hello,

    I have tried every blog/cms system listed on hotscripts.com and opensourcecms.com (few hundreds), always with newbie-user-on-my-mind, and have to say, I (almost) prefer WP, especially after introducing pages, not only articles/categories, but there are still two issues which effectively stops me in going with WP:

    1. templates are still messed with php code (security! in multiuser environment)
    2. granular privileges and users levels are still cryptic (numbers)

    all above (2) issues/features are really well implemented/resolved in many less mature than WP systems, to name few: lucidcms.net , cmsmadesimple.org or (I'm sorry ;) textpattern.com

    there are many posts on this forum on this subject (or near it) but these issues are still untouched

    can you say something yes/no about plans on changing it to more mature level ?

    Best,
    Oscar

  2. prissed
    Member
    Posted 9 years ago #

    Are you using the Multi-user version?
    http://mu.wordpress.org/

  3. 1. templates are still messed with php code (security! in multiuser environment)

    There is no way to make a dynamic site (blog or CMS) without PHP code. PHP is a dynamic language which uses queries, commands, etc. to display information.

  4. ifelse
    Member
    Posted 9 years ago #

    There is no way to make a dynamic site (blog or CMS) without PHP code. PHP is a dynamic language which uses queries, commands, etc. to display information.
    That's far from true. There are many blog/CMS which are based on a true templating system in which the underlying driving code and template design code are fully segregated. I, myself, designed such a system back in the days before WP.

    Whilst both approaches have their pros and cons (and the fact that I'm using WP myself means that I'm not adverse to WP approach), to state that such is the only solution is a bit of a misnomer.

    That said, let's go back to the OP's queries.
    a) It would be extremely unlikely that there will be any change in this area. You'll have to assess whether this is something that you can live with. With regards to security, appropriate assignation of user_levels should mitigate any such risk.
    b) They're slightly cryptic but it's well documented Have a look at the codex and if you have any queries, we'll try and help out.

  5. That's far from true. There are many blog/CMS which are based on a true templating system in which the underlying driving code and template design code are fully segregated.

    Oh ... well I like PHP better. It's ummm ... universal... yeah... ::hiding::

  6. ifelse
    Member
    Posted 9 years ago #

    Oh ... well I like PHP better.
    Me too:-)

  7. dragontiger
    Member
    Posted 9 years ago #

    Thanks for the answers.

    ifelse:

    a) I understand changing it to template system like textpattern or lucidcms has, would 'break' many WP users implementations if they love the ability to dig in pure PHP code there, but there is no way to get even minimal security with this in multiuser-environment - I mean my setup where many users have their systems running on one Apache, with the same uid:gid, without any chroot, and where they should have only web-access (no ftp) and because of it should never had ability to include own PHP code in templates

    b) I do understand it is documented, but this is the same story as with RTE like TinyMCE or HTMLArea - I agree textile is better, but never for those 'newbie-user-on-my-mind', and it seems to be similar problem in WP , TXP and other systems communities - you have geek-user rather than newbie-end-user on your mind - this is my personal opinion of course, but I'm not so sure it should go this way

    Cheers,
    Oscar

  8. notthatugly
    Member
    Posted 9 years ago #

    Would the EasyTags plugin be any help to you? There really is zilch chance of anything like this being included in the core. The developers like making people engage with raw PHP; they think it's educational.

Topic Closed

This topic has been closed to new replies.

About this Topic

Tags

No tags yet.