session - How do I filter sanitize input in PHP? -


i have code below i'm trying filter sanitize form requires in $_session because need items page added onto page , displayed cart list. anyway i'm having trouble getting code filter anything. doesn't work not sure i've done wrong here?[code][1]

if $_post data valid, customer details must added $_session , user forwarded new script called receipt.php

  <?php    session_start();  if(isset($_session['cart'])) {      $name =    filter_input(input_session, 'name', filter_sanitize_string);     $email =   filter_input(input_session, 'email', filter_sanitize_email);     $phone =   filter_input(input_session, 'phone', filter_sanitize_int);     $address = filter_input(input_session, 'address', filter_sanitize_string);    } ?>

so @ point need submit form testing purposes, heres code @ current time:

session_start(); if(empty($_post['add']) === false ) {  $name =    filter_var($_post['name'], filter_sanitize_string); $email =   filter_var($_post['email'], filter_sanitize_email); $phone =   filter_var($_post['phone'], filter_sanitize_int); $address = filter_var($_post['address'], filter_sanitize_string);   } ?> <form method="post" action="cart.php" id="form1">      <label for="name">name:</label><br>     <input type="text" name="name">     <br><br>     <label for="email">email:</label><br>     <input type="email" name="email">     <br><br>     <label for="tel">phone:</label><br>     <input type="tel" name="phone">     <br><br>     <label for="textarea">address:</label><br>     <input type="textarea" name="address">     <br>      <div id="checkbox">         <input type="checkbox" value="remember">     </div>       <div id="label1">         <label for="checkbox">remember me</label>            </div>       <br>     <br>           <input type="submit" value="submit">     </form>

i have debug module on page , in $_post array instead go when put html entities inside name input field still aren't being sanitised/removed.

debug module:

$_post contains: array ( [name] => frost [email] =>  [phone] =>  [address] =>  )

*frost shows in bold when add bold html tag input field whole point of stop happening.

input_session not exist - see http://php.net/manual/en/function.filter-input.php

in case, since looking store validated post data session code wrote wouldn't work if there input_session.

instead use this: 

if (!empty($_post)       && ($name    = filter_input(input_post, "name", filter_sanitize_string))     && ($email   = filter_input(input_post, "email", filter_sanitize_email))     && ($phone   = filter_input(input_post, "phone", filter_sanitize_int))     && ($address = filter_input(input_post, "address", filter_sanitize_string))     ) {         $_session['foobar'] = [             'name'    => $name,             'email'   => $email,             'phone'   => $phone,             'address' => $address,         ]; }

this way check post data has been submitted assertaining desired validity before assigning session array.

note assigning values inside if condition frowned upon, merely demonstrate type of approach required, ie, check , validate post before assigning session.


Comments

Post a Comment

Popular posts from this blog

ubuntu - PHP script to find files of certain extensions in a directory, returns populated array when run in browser, but empty array when run from terminal -

i running os ububtu 16.04. ultimate goal able run php script cron job every minute. here php script located @ /var/www/html/tests/test/index.php : <?php $directorypath = $_server['document_root']."/tests/test/data/"; echo "directorypath: $directorypath<br><br>";//check $imagefilepathsarray = glob($directorypath . "*.{png,gif}", glob_brace); echo "<br><br>imagefilepathsarray: "; print_r($imagefilepathsarray);//check ?> when open php script in browser visiting url my-ip-address/tests/test/index.php , get: directorypath: /var/www/html/tests/test/data/ imagefilepathsarray:array( [0] => /var/www/html/tests/test/data/pic.png [1] => /var/www/html/tests/test/data/pic.gif ) before writing cron job in crontab file, need check if can run anywhere using terminal . opened ubuntu terminal @ /home/ location, , executed in terminal: sudo php /var/www/html/tests/test/index.php i got following out...
Read more

php - How can i create a user dashboard -

today have questions you, want create user dashboard site, include (obviously), users data, example -email -username -and others stuff how can information, , print them in html page? if can, how can these information via php sessions? shuld use session? example, if user login, , start new session ( session_start() ), how can data print in dashboard? should use php "project"? in advice, have day , thank time!
Read more

javascript - How to detect toggling of the fullscreen-toolbar in jQuery Mobile? -

i have jquery mobile page fixed full-screen toolbar, data-tap-toggle enabled. straight under toolbar have positioned banner should slide upwards when toolbar hiding , slide downward when toolbar showing. jquery mobile toggles toolbar applying , removing ui-fixed-hidden class - sadly, can't find in documentation of toolbar widget toggle , hide or show event that. how can detect when toolbar toggled, reposition banner? .banner { position: fixed; background-color: darkseagreen; top: 46px; min-height: 48px; width: 100%; text-align: center; line-height: 48px; } <!doctype html> <html> <head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=no"> <link rel="stylesheet" href="https://code.jquery.com/mobile/1.4.5/jquery.mobile-1.4.5.css"> <script src="https://code.jquery.com/jquery-1....
Read more