Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums Archived Discussions Archived Development & Programming $this->db->escape() vs $this->db->escape_str()
$this->db->escape() vs $this->db->escape_str()
  • El Forum
    Guest
  •  
#1
03-13-2011, 01:09 PM

[eluser]Evollution[/eluser]
i dont understand when i shoud use $this->db->escape_str() and when $this->db->escape() what is the diffrence ?
  • El Forum
    Guest
  •  
#2
03-13-2011, 01:47 PM

[eluser]Evollution[/eluser]
for example my controller

Code:
function create(){
        $this->load->library('form_validation');
        // field name, error message, validation rules
        $this->form_validation->set_rules('name', 'Title', 'trim|required|min_length[4]|xss_clean');
        $this->form_validation->set_rules('autoplayon', 'Autoplay ON', 'trim|required');
        $this->form_validation->set_rules('autoplayoff', 'Autoplay OFF', 'trim|required');
        if($this->form_validation->run() == FALSE)
        {
            $this->load->view('admin/add');
        }
        else
        {            
            $data = array(
            'name' => $this->input->post('name'),
            'slug' => url_title($this->input->post('name'),'dash', TRUE),
            'autoplayon' => $this->input->post('autoplayon'),
            'autoplayoff' => $this->input->post('autoplayoff'),
            'autor' => $this->MyBBI->mybb->user['username']
            );
        
        $this->radio_m->add_record($data);
        $this->index();
        }

and my model

Code:
function add_record($data){
        // insert
       $this->db->insert('radio', $this->db->escape($data));
        $return;

I done it corectly ?
  • El Forum
    Guest
  •  
#3
03-13-2011, 08:39 PM

[eluser]guidorossi[/eluser]
You don't need to escape the data if you're using Active Record because "All values are escaped automatically producing safer queries."

http://ellislab.com/codeigniter/user-gui...tml#insert




Theme © iAndrew 2016 - Forum software by © MyBB