3

I'm working in an insane mess of a CMS system where php, javascript, and html are all within templates. I'm trying to drop in code from a third party site for integration functionality, but they have javascript of the form:

<script type="lib">
Hello, <?js= firstName ?>!
</script>

The PHP interpreter see's and does its thing, and thus the entire template errors out.

Anyone know how to perhaps wrap this code block to prevent PHP interpreter from caring about it?

Thanks in advance!

DJSunny
  • 1,970
  • 3
  • 19
  • 27

4 Answers4

4

If disabling PHP Short-tags isn't an option, you could simply output said string using PHP, so you'd get something like this: 

Hello, <?php print "<?js= firstName ?>"; ?>!
gen_Eric
  • 223,194
  • 41
  • 299
  • 337
CharlesLeaf
  • 3,201
  • 19
  • 16
  • Thanks for the response. I tried this and it didn't end up doing the trick, but I found a really ugly solution specific to the CMS. – DJSunny Sep 22 '11 at 16:49
3

Disable PHP Short-Tags and you should not have an issue.

Naftali
  • 144,921
  • 39
  • 244
  • 303
  • Is there a way to do that inline? The rest of the site uses them extensively so disabling them from the on server PHP level isn't an option. – DJSunny Sep 22 '11 at 14:15
  • @csjohn -- well you cannot disable them with `ini_set`. You might have to look over SO to find the answer to that one. – Naftali Sep 22 '11 at 14:18
3

In a PHP document with short open tags enabled, the PHP interpreter will see the <? part of the <?js tag and will try to parse it as PHP, resulting in this error:

Parse error: syntax error, unexpected T_STRING in ... on line ...

To fix the problem, disable the short form (<? ?>) of PHP's open tag.

This will now disable the use of <? and <?= in your PHP scripts. If your site only uses <?php tags then this is safe to do; if it uses <? as well then it is not safe to do as your scripts will no longer function as expected.

There are two ways your Web Host or System Administration will have configured Apache to use PHP:

  • Apache loads the PHP interpreter as an Apache module
  • Apache runs the PHP interpreter as a CGI binary

Which solution you will use below will depend on how Apache is running PHP in your environment*.

In Apache's .htaccess file, place the following:

# PHP as an Apache Module
php_value short_open_tag 0

In the global or a local php.ini file, place the following:

# PHP as a CGI Wrapper
short_open_tag = Off

In either case, you'll want to restart Apache after making any configuration changes to ensure your new settings get picked up.

Note: If your server is configured to run PHP as an Apache module, then you will have the choice of using either a php.ini or Apache .htaccess files. However, if your server runs PHP as a CGI wrapper then you will only have the choice of using php.ini files locally to change settings, as Apache is no longer in complete control of PHP.

When PHP is running as a CGI wrapper, putting PHP settings in to an .htaccess file will cause the server throw an error.

rjb
  • 9,036
  • 2
  • 44
  • 49
1

Do you happen to be running apache? Do these files live separate from the PHP? If so, you could use an .htaccess file (or httpd.conf if you have the rights to modify it) to do something like this:

<FilesMatch "\.template_file_ext">
    php_flag engine off
</FilesMatch>
Dereleased
  • 9,939
  • 3
  • 35
  • 51
  • Yeah good call. Unfortunately the crappy CMS being used here stores templates in a DB not specific files. I ended up finding an ugly fix though. – DJSunny Sep 22 '11 at 16:50