I'm currently working with RR plugins in statistics pages and very regularly changing those, upgrading the formulas / contents. This makes me validate plugins really really often (say, 5 times per 10 min), and even if the admin plugin validation page is useful, it still slows my work down a great deal, especially when I have to edit 5-6 times a plugin in order to correct its outputs.
Discussing with Xavi he pointed me out that autovalidation is a security problem, as some plugins can inject malicious code. Of this I'm plainly conscient, but it would still be a good option for some usercases to have an autovalidate option, reserved for admins or other special groups. The top option would be to have it only for some chosen plugins.
... I guess that CMS admins aren't there to inject malicious code ;), and honestly, I NEVER read the plugin validation text when I have been writing it (plugin HTML, plugin redirect, plugin RR)... Just validating it, and testing it before putting it on our main server, when its arguments might harm something.
An other option to my usercase would be to have plugin aliases without plugin validation reserved to admins.
Either case, this option might really help !
|No attachments for this item|