PHP OOP - 可以从外部类访问var_dump的私有变量？

I have a class User with a variable: private $uPass;

I just noticed that when creating an instance of User and I run a var_dump on that instance that it just lists all the private variables? Is there any way to turn this off?

class User
{
    private $uId;
    private $uName;
    private $uPass;
    private $uPowers;

$teamMembers[$count] = new User();

foreach ($teamMembers as $teamMember)
{
    var_dump($teamMember);
}

And then the output just shows everything, including the passwords ... Ofcourse they're encrypted, but still don't want them to be accessible like this!?

What's the correct way to solve this?

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

1条回答默认最新

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
dongyu6276 2016-09-22 12:26
关注
It's doing exactly what it says it does:

All public, private and protected properties of objects will be returned in the output unless the object implements a __debugInfo() method (implemented in PHP 5.6.0).

So you can implement a custom __debugInfo method, or alternatively, just stop worrying about it. This is only a security risk if someone has access to your source code, or a serialized copy of the object, both of which are probably signs of a much wider security issue.

本回答被题主选为最佳回答 , 对您是否有帮助呢?

解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

报告相同问题？

关注问题

PHP OOP - 可以从外部类访问var_dump的私有变量？ php
2016-09-22 12:19

回答 1 已采纳 It's doing exactly what it says it does: All public, private and protected properties of objec
PHP PDO数组结果为空，但var_dump返回完整结果 php
2018-10-29 13:38

回答 1 已采纳 In your calling script try echo json_encode($res); instead of return json_encode($res);
OOP-php - 无法从数据库中检索数据 php
2016-10-01 11:34

回答 2 已采纳 Everything is okay except this line, public function _construct($dbrow){ ... ^^^^
php 类私有变量赋值,ThinkPHP遇到的类私有变量赋值问题
2021-04-24 23:13

weixin_39912303的博客 Home\Common\Map.class.php文件namespace Home\Common;class Map {static function getName() {$map = array('0' => '张三','1' => '李四','2' => '王五','3' => '赵六');return $map;}}Home\Controller...
PHP OOP - 类中的类数组[关闭] php
2015-05-08 20:30

回答 3 已采纳 Make a class, with a property that is an array, then add to the array: <?php class User {
在PHP 7匿名类中访问外部变量 php
2018-02-27 21:53

回答 3 已采纳 another solution could be $outer = 'something'; $instance = new class($outer) { private $o
PHP - 从动态变量访问对象属性 php
2017-02-16 06:16

回答 3 已采纳 I don't think you can make multiple dereferences this way. You'll be looking for a variable in $ob
OOP PHP - get_object_vars php
2011-09-16 16:00

回答 1 已采纳 The problem lies in your query: $sql = "INSERT INTO ".static::$tableName." ("; $sql .= jo
PHP MYSQL OOP打印从外部变量调用的表行的值以进行打印 mysql php
2016-06-25 00:47

回答 1 已采纳 '<h1>$name</h1>' and '<p>$loc</p>' are just a plain strings. The variable
PHP - 最佳实践类中的全局数据库变量（OOP）[重复] php
2016-04-13 12:23

回答 2 已采纳 For global objects which can potentially be used anywhere I personally prefer singleton classes:
1899-11-30 php mysql_php，mysql 小测验习题解析
2021-01-19 18:00

liberum Chase的博客判断题判断题(共10题，每题2分)1...( 错) php中用的是‘.’不用‘.’3．php可以使用“scanf”来打印输出结果。( 错) scanf就不是用来打印结果的关键字4．每个语句结尾都要加“；”来表示语句结束。 ( 对 ) 固定格式...
是否可以在PHP中使用class作为变量？ php
2015-06-08 07:32

回答 3 已采纳 PHP does not support overloading operators (which is the technical thing you're looking for). It d
php判断某个变量是否为空,检查一个变量是否为空 - PHP 7 中文文档
2021-03-24 08:38

芒果冰OL的博客 (PHP 4, PHP 5, PHP 7)empty – 检查一个变量是否为空说明empty( [mixed](php7/language.pseudo-types) $var) : bool判断一个变量是否被认为是空的。当一个变量并不存在，或者它的值等同于FALSE，那么它会被认为不...
PHP2016-03-24参考手册
2016-09-14 15:15

`var_dump()`和`print_r()`用于查看变量信息，帮助调试代码。六、数据库操作 PHP通过PDO（PHP Data Objects）或mysqli扩展来连接和操作数据库。它们支持预处理语句，提高安全性并防止SQL注入。同时，PHP还提供了...
没有解决我的问题, 去提问

悬赏问题

¥15 metadata提取的PDF元数据，如何转换为一个Excel
¥15 关于arduino编程toCharArray()函数的使用
¥100 vc++混合CEF采用CLR方式编译报错
¥15 coze 的插件输入飞书多维表格 app_token 后一直显示错误，如何解决？
¥15 vite+vue3+plyr播放本地public文件夹下视频无法加载
¥15 c#逐行读取txt文本，但是每一行里面数据之间空格数量不同
¥50 如何openEuler 22.03上安装配置drbd
¥20 ING91680C BLE5.3 芯片怎么实现串口收发数据
¥15 无线连接树莓派，无法执行update，如何解决？（相关搜索：软件下载）
¥15 Windows11, backspace, enter, space键失灵

PHP OOP - 可以从外部类访问var_dump的私有变量？

1条回答 默认 最新

悬赏问题

1条回答默认最新