Answer the question
In order to leave comments, you need to log in
J
J
Jan2019-03-31 16:25:47
Jan, 2019-03-31 16:25:47
How does request.form.to_dict() escape?
Hello! There is a section of code where data is taken from the form and entered into the database.
At this stage, there is some screening of html tags. I would like to know in what form such strings will be stored in the database.
cv_firstname = request.form.get('firstname')
cv_lastname = request.form.get('lastname')
cv_email = request.form.get('email')
cv_phone = request.form.get('phone')
cv_message = request.form.get('message')
if cv_firstname and cv_lastname and cv_email and cv_phone and cv_message:
cv = request.form.to_dict()
cv['user'] = session['username']
cv['status'] = 'Wait'
cv['time'] = datetime.datetime.now().strftime("%Y-%m-%d %H:%M:%S")
if db_count_user_cv(cv['user']) > 9:
session['last_error'] = "Maximum of request reached :("
session['last_url'] = "/home"
return redirect(url_for('error'))
db_add_cv(cv)
Similar questions
N
F
K
E
B
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question