Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
P
P
Petr Fronin2016-03-15 18:52:53
Yii
Petr Fronin, 2016-03-15 18:52:53

Yii2 how to escape data written to the database?

Example:

$message = new Messages();
$message->message = $this->message;
$message->save()

$this->message; - data entered by the user

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

3 answer(s)
Report
D
Dmitry Bay, 2016-03-15
@amar_std

1) When writing data to the database using AR , the lines are escaped. Those. you won't have sql injection there.
You can clear tags in two ways:
1) when displayed in a view, for example:
2) Clear using Htmlpurify, in the beforeSave method, for example:

$this->content = HtmlPurifier::process($this->content) ;

Report
D
Dmitry Voronkov, 2016-03-15
@DmitryVoronkov

Do whatever you want with the data, with the help of validators (I just didn't understand what you meant by "escaping").

Report
A
Alexander Makarov, 2016-03-15
@SamDark

No way. Use parameters (prepared statements).

Similar questions
M
Maxim2018-06-21 15:18:52
Yii how to link back? 1Reply
N
NickForDevelop2020-06-25 15:31:43
Where can I find links to good yii2 projects where I can learn good code? 1Reply
W
webgrig2018-06-22 16:09:33
Why Yii2 field validation fails? 0Reply
P
Pavel Khorikov2016-02-08 22:54:44
What is the principle of operation of acceptance tests in Yii2? 1Reply
B
bernex2016-02-09 20:21:40
How to make a shared session in Yii and Laravel 5? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question