#172583 by myself and keith.smith: help page for the PHP filter module

1 files changed, 4 insertions, 1 deletions

diff --git a/modules/php/php.module b/modules/php/php.module
index 8251531ee..681fd70b7 100644
--- a/modules/php/php.module
+++ b/modules/php/php.module
@@ -13,7 +13,10 @@
 function php_help($path, $arg) {
   switch ($path) {
     case 'admin/help#php':
-      return t('Adds a filter option to include PHP in content.');
+      $output = '<p>'. t('The PHP filter adds the ability to include PHP code in posts. PHP is a general-purpose scripting language widely-used for web development; the content management system used by this website has been developed using PHP.') .'</p>';
+      $output .= '<p>'. t('Through the PHP filter, users with the proper permission may include custom PHP code within a page of this site. While this is a powerful and flexible feature if used by a trusted user with PHP experience, it is a significant and dangerous security risk in the hands of a malicious user. Even a trusted user may accidentally compromise the site by entering malformed or incorrect PHP code. Only the most trusted users should be granted permission to use the PHP filter, and all PHP code added through the PHP filter should be carefully examined before use.') .'</p>';
+      $output .= '<p>'. t('<a href="@drupal">Drupal.org</a> offers <a href="@php-snippets">some example PHP snippets</a>, or you can create your own with some PHP experience and knowledge of the Drupal system.', array('@drupal' => url('http://drupal.org'), '@php-snippets' => url('http://drupal.org/handbook/customization/php-snippets'))) .'</p>';
+      return $output;
   }
 }