in reply to Form validation: preferred modules?

DATA::FormValidator.

I use it in conjunction with CGI::Application::ValidateRM. DFV allows custom relationships to be enforced, grouping of fields, and fully customisable messages. These modules all work extremely well together.

HTML::FormValidator is the predecessor to Data::FormValidator, you will notice the intense similarity. HTML::FV has not been maintained in a year or so, Data::FV is actively maintained by Mark Stosberg and is based on the HTML::FV code.

update CGI::Untaint is relatively new and comes from Tony Bowden, the author of Class::DBI, as yet it has limited validations. I have not tried it. Params::Validate would seem to be more useful in validating command line parameters rather than form input.

jdtoronto

  • Comment on Re: Form validation: preferred modules?

Replies are listed 'Best First'.
Re: Re: Form validation: preferred modules?
by bsb (Priest) on Dec 22, 2003 at 08:25 UTC
    I have some (vague) misgivings about combining untainting and validation as CGI::Untaint and others do. In some cases you would want input to remain tainted, even after it's validated.

    That said, I don't use taint mode very often so I'm not is a good position to judge the risk-convenience balance.

[reply]

In Section Seekers of Perl Wisdom