CodeIgniter Forums

Full Version: What about security in CI?
You're currently viewing a stripped down version of our content. View the full version with proper formatting.

El Forum

[eluser]borgir[/eluser]
Hey there!
Is there any function similar to mysql_real_escape_string in CI?
Will I have to worry about this when using CI forms and DB insert functions?
Thks!

El Forum

[eluser]BrianDHall[/eluser]
CI's built-in SQL helper/class and ActiveRecord all automatically handle escaping special characters for you, you don't have to worry about doing it manually. It's a really nice time-saver, one less thing to worry about.

You should still do basic data sanitizing using form validation and common sense, but you don't have to worry about escaping special chars.

El Forum

[eluser]borgir[/eluser]
Thks for the information, Brian!
Take care =)

El Forum

[eluser]InsiteFX[/eluser]
You can also find this helpful for security.

CodeIgniter Security Help

Enjopy
InsiteFX

El Forum

[eluser]borgir[/eluser]
Thks a lot, InsiteFX!
Cheers!