Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
I
I
iOS Dav2016-07-05 13:10:45
PHP
iOS Dav, 2016-07-05 13:10:45

What is better, to save the user's post to the database by executing htmlentities() or not?

If not done, then we do EVERY TIME when visitors open a forum topic! This load on the server!!!!!!!!!!!!!!!
If done - what to do when the user tries to edit his post? after all, as far as I understand, the user needs the original text and not the text with extra characters that htmlentities () made

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
Y
yuras666, 2016-07-05
@yuras666

Most templating engines like twig always do something like <?php echo htmlspecialchars($var, ENT_QUOTES, 'UTF-8') ?> on output. So do not worry, the load on the server is small.

Report
A
Andrey Burov, 2016-07-05
@BuriK666

Always keep the original text.
The parsed one can be cached. (although the costs for htmlentites/ htmlspecialchars are very small)

Similar questions
M
Mikhail Potapenkov2016-06-13 18:20:30
On initial startup, the OS issues a blue screen 0x0000007B. What does it mean? 4Reply
I
Isaac Clark2017-04-05 13:43:42
HTML5 GAME: Is it better to use Canvas or DIV for sprite animation? 5Reply
A
Anton2021-03-27 12:39:53
Getting the selected radio item and passing it to the email body, how to display the selected item? 2Reply
P
Pavel2014-05-18 14:34:20
How to set up Chrome DevTools Autosave on windows? 4Reply
S
student_it2015-04-19 11:49:55
How can I prevent the Referer from being sent when playing an audio file via the HTML Audio tag? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question