本文整理汇总了PHP中cleanvar函数的典型用法代码示例。如果您正苦于以下问题:PHP cleanvar函数的具体用法?PHP cleanvar怎么用?PHP cleanvar使用的例子?那么, 这里精选的函数代码示例或许可以为您提供帮助。
在下文中一共展示了cleanvar函数的15个代码示例,这些例子默认根据受欢迎程度排序。您可以为喜欢或者感觉有用的代码点赞,您的评价将有助于系统推荐出更棒的PHP代码示例。
示例1: move_uploaded_file
$mv = move_uploaded_file($_FILES['attachment']['tmp_name'], $newfilename);
if (!$mv) {
$sql = "DELETE FROM `{$dbUpdates}` WHERE id='{$updateid}'";
mysql_query($sql);
if (mysql_error()) {
trigger_error("MySQL Query Error " . mysql_error(), E_USER_ERROR);
}
trigger_error('!Error: Problem moving attachment from temp directory to: ' . $newfilename, E_USER_WARNING);
}
// Check file size before attaching
if ($_FILES['attachment']['size'] > $att_max_filesize) {
trigger_error('User Error: Attachment too large or file upload error - size:', $_FILES['attachment']['size'], E_USER_WARNING);
// throwing an error isn't the nicest thing to do for the user but there seems to be no guaranteed
// way of checking file sizes at the client end before the attachment is uploaded. - INL
}
$filename = cleanvar($_FILES['attachment']['name']);
if ($cust_vis == 'yes') {
$category = 'public';
} else {
$category = 'private';
}
}
//create link
$sql = "INSERT INTO `{$dbLinks}`(linktype, origcolref, linkcolref, direction, userid) ";
$sql .= "VALUES(5, '{$updateid}', '{$fileid}', 'left', '{$sit[2]}')";
mysql_query($sql);
if (mysql_error()) {
trigger_error("MySQL Query Error " . mysql_error(), E_USER_ERROR);
}
$sql = "UPDATE `{$dbIncidents}` SET status='{$newstatus}', priority='{$newpriority}', lastupdated='{$now}', timeofnextaction='{$timeofnextaction}' WHERE id='{$id}'";
mysql_query($sql);示例2: cleanvar
return $html;
}
$title = $strEditFeedbackQuestion;
$qid = cleanvar($_REQUEST['qid']);
$fid = cleanvar($_REQUEST['fid']);
$action = cleanvar($_REQUEST['action']);
switch ($action) {
case 'save':
// External variables
$question = cleanvar($_POST['question']);
$questiontext = cleanvar($_POST['questiontext']);
$sectiontext = cleanvar($_POST['sectiontext']);
$taborder = cleanvar($_POST['taborder']);
$type = cleanvar($_POST['type']);
$required = cleanvar($_POST['required']);
$options = cleanvar($_POST['options']);
$sql = "UPDATE `{$dbFeedbackQuestions}` SET ";
$sql .= "question='{$question}', ";
$sql .= "questiontext='{$questiontext}', ";
$sql .= "sectiontext='{$sectiontext}', ";
$sql .= "taborder='{$taborder}', ";
$sql .= "type='{$type}', ";
$sql .= "required='{$required}', ";
$sql .= "options='{$options}' ";
$sql .= "WHERE id='{$qid}' LIMIT 1";
mysql_query($sql);
if (mysql_error()) {
trigger_error("MySQL Error: " . mysql_error(), E_USER_ERROR);
}
header("Location: feedback_form_edit.php?formid={$fid}");
exit;示例3: preg_replace
// create Session instance
$ses->sesStart('install_echelon');
// start session (name 'echelon', 0 => session cookie, path is echelon path so no access allowed oustide echelon path is allowed)
if ($_GET['t'] == 'install') {
## find the Echelon directory ##
$install_dir = $_SERVER['SCRIPT_NAME'];
$echelon_dir = preg_replace('#install/index.php#', '', $install_dir);
## Create an Echelon salt
$ech_salt = genSalt(16);
$ses_salt = randPass(6);
## Get the form information ##
$email = cleanvar($_POST['email']);
$db_host = cleanvar($_POST['db-host']);
$db_user = cleanvar($_POST['db-user']);
$db_pass = cleanvar($_POST['db-pass']);
$db_name = cleanvar($_POST['db-name']);
emptyInput($email, 'your email address');
emptyInput($db_host, 'your email address');
emptyInput($db_host, 'database hostname');
emptyInput($db_user, 'database username');
emptyInput($db_name, 'database name');
// check the new email address is a valid email address
if (!filter_var($email, FILTER_VALIDATE_EMAIL)) {
sendBack('That email is not valid');
}
## test connection is to the Db works ##
define("DBL_HOSTNAME", $db_host);
// hostname of where the server is located
define("DBL_USERNAME", $db_user);
// username that can connect to that DB
define("DBL_PASSWORD", $db_pass);示例4: trigger_error
} else {
$shade = 'shade2';
}
}
echo "</table>";
echo "<p align='center'>{$strUsersBoldSkills}.</p>";
} else {
trigger_error('User input error: ' . $error_string, E_USER_ERROR);
}
}
include APPLICATION_INCPATH . 'htmlfooter.inc.php';
} elseif ($action == 'reassign') {
// External variables
$incidentid = cleanvar($_REQUEST['incidentid']);
$uid = cleanvar($_REQUEST['userid']);
$nextaction = cleanvar($_REQUST['nextaction']);
include APPLICATION_INCPATH . 'htmlheader.inc.php';
echo "<h2>{$strIncidentAdded} - {$strSummary}</h2>";
echo "<p align='center'>";
$incidentnum = "<a href=\"javascript:incident_details_window('{$incidentid}','incident{$incidentid}');\">{$strIncident} {$incidentid}</a>";
$queuename = "<strong style='color: red'>{$strActionNeeded}</strong>";
$name = user_realname($uid);
printf($strHasBeenAutoMovedToX, $incidentnum, $name, $queuename);
echo help_link('AutoAssignIncidents') . "</p><br /><br />";
$userphone = user_phone($userid);
if ($userphone != '') {
echo "<p align='center'>{$strTelephone}: {$userphone}</p>";
}
$sql = "UPDATE `{$dbIncidents}` SET owner='{$uid}', lastupdated='{$now}' WHERE id='{$incidentid}'";
mysql_query($sql);
if (mysql_error()) {示例5: elseif
echo "<input type='submit' value='Save / Display' />";
}
echo "</div>";
echo "</form>\n";
} elseif ($_REQUEST['mode'] == "save") {
$badchars = array('.', '/', '\\');
$lang = cleanvar($_REQUEST['lang']);
$lang = str_replace($badchars, '', $lang);
$origcount = cleanvar($_REQUEST['origcount']);
$i18nalphabet = cleanvar($_REQUEST['i18nalphabet'], TRUE, FALSE);
$filename = "{$lang}.inc.php";
echo "<p>Send Translation, <code>{$filename}</code>", "<code>i18n</code>", "<a href='mailto:sitracker-devel-discuss@lists.sourceforge.net'>sitracker-devel-discuss@lists.sourceforge.net</a> </p>";
$i18nfile = '';
$i18nfile .= "<?php\n";
foreach ($_REQUEST['meta'] as $meta) {
$meta = cleanvar($meta);
$i18nfile .= "// {$meta}\n";
}
$i18nfile .= "\n";
$i18nfile .= "\$languagestring = '{$languages[$lang]} ({$lang})';\n";
$i18nfile .= "\$i18ncharset = 'UTF-8';\n\n";
if (!empty($i18nalphabet)) {
$i18nfile .= "// List of letters of the alphabet for this language\n";
$i18nfile .= "// in standard alphabetical order (upper case, where applicable)\n";
$i18nfile .= "\$i18nAlphabet = '{$i18nalphabet}';\n\n";
}
$i18nfile .= "// list of strings (Alphabetical by key)\n";
$lastchar = '';
$translatedcount = 0;
foreach (array_keys($_POST) as $key) {
if (!empty($_POST[$key]) and substr($key, 0, 3) == "str") {示例6: cleanvar
require 'core.php';
require APPLICATION_LIBPATH . 'functions.inc.php';
// This page requires authentication
require APPLICATION_LIBPATH . 'auth.inc.php';
$title = $strAddLink;
// External variables
$action = $_REQUEST['action'];
$origtab = cleanvar($_REQUEST['origtab']);
$origref = cleanvar($_REQUEST['origref']);
$linkref = cleanvar($_REQUEST['linkref']);
$linktypeid = cleanvar($_REQUEST['linktype']);
$direction = cleanvar($_REQUEST['dir']);
if ($direction == '') {
$direction = 'lr';
}
$redirect = cleanvar($_REQUEST['redirect']);
switch ($action) {
case 'addlink':
// Insert the link
if ($direction == 'lr') {
$sql = "INSERT INTO `{$dbLinks}` ";
}
$sql .= "(linktype, origcolref, linkcolref, userid) ";
$sql .= "VALUES ('{$linktypeid}', '{$origref}', '{$linkref}', '{$sit[2]}')";
mysql_query($sql);
if (mysql_error()) {
trigger_error(mysql_error(), E_USER_ERROR);
}
html_redirect($redirect);
break;
case '':示例7: cleanvar
## Type of ban and get and set vars ##
$pb_ban = cleanvar($_POST['pb']);
if ($pb_ban == 'on') {
$is_pb_ban = true;
} else {
$is_pb_ban = false;
$duration_form = cleanvar($_POST['duration']);
$time = cleanvar($_POST['time']);
emptyInput($time, 'time frame');
emptyInput($duration_form, 'penalty duration');
}
$reason = cleanvar($_POST['reason']);
$client_id = cleanvar($_POST['cid']);
$pbid = cleanvar($_POST['c-pbid']);
$c_name = cleanvar($_POST['c-name']);
$c_ip = cleanvar($_POST['c-ip']);
// check for empty reason
emptyInput($reason, 'ban reason');
## Check sent client_id is a number ##
if (!isID($client_id)) {
sendBack('Invalid data sent, ban not added');
}
## Sort out some ban information
if ($is_pb_ban) {
// if the ban is perma ban
$type = 'Ban';
$time_expire = '-1';
$duration = 0;
} else {
$type = 'TempBan';
// NOTE: the duration in the DB is done in MINUTES and the time_expire is written in unix timestamp (in seconds)示例8: set_error
require 'inc.php';
if ($mem->loggedIn()) {
// if logged don't allow the user to register
set_error('Logged in users cannot register');
sendHome();
// send to the index/home page
}
if (!isset($_REQUEST['key'])) {
// if key does not exists
$step = 1;
// the user must input a matching key and email address
} else {
// if key is sent
// clean vars of unwanted materials
$key = cleanvar($_REQUEST['key']);
$email = cleanvar($_REQUEST['email']);
// check the new email address is a valid email address
if (!filter_var($email, FILTER_VALIDATE_EMAIL)) {
set_error('That email is not valid 9999999');
}
// query db to see if key and email are valid
$valid_key = $dbl->verifyRegKey($key, $email, $key_expire);
if ($valid_key == true) {
// if the key sent is a valid one
$step = 2;
} else {
$step = 1;
set_error('The key or email you submitted are not valid.');
}
}
// basic page setup示例9: cleanvar
//
// SiT (Support Incident Tracker) - Support call tracking system
// Copyright (C) 2000-2009 Salford Software Ltd. and Contributors
//
// This software may be used and distributed according to the terms
// of the GNU General Public License, incorporated herein by reference.
//
// Author: Paul Heaney <paulheaney[at]users.sourceforge.net>
$permission = 0;
// not required
require 'core.php';
require APPLICATION_LIBPATH . 'functions.inc.php';
// This page requires authentication
require APPLICATION_LIBPATH . 'auth.inc.php';
$legacy = cleanvar($_REQUEST['legacy']);
$groupid = cleanvar($_REQUEST['gid']);
// By default show users in home group
if ($groupid == 'all') {
$filtergroup = 'all';
} elseif ($groupid == '') {
$filtergroup = $_SESSION['groupid'];
} else {
$filtergroup = $groupid;
}
$title = $strSkillsMatrix;
include APPLICATION_INCPATH . 'htmlheader.inc.php';
echo "<h2>" . icon('skill', 32) . " ";
echo "{$title}</h2>";
echo "<p align='center'>{$strDisplay}: ";
if (empty($legacy)) {
echo "<a href='{$_SERVER['PHP_SELF']}?legacy=yes&gid={$groupid}'>{$strAll}</a>";示例10: date_picker
echo date_picker('addsoftware.lifetime_end');
echo "</td></tr>\n";
echo "<tr><th>{$strTags}:</th>";
echo "<td><textarea rows='2' cols='30' name='tags'></textarea></td></tr>\n";
echo "</table>";
echo "<p align='center'><input name='submit' type='submit' value='{$strAddSkill}' /></p>";
echo "<p class='warning'>{$strAvoidDupes}</p>";
echo "</form>\n";
echo "<p align='center'><a href='products.php'>{$strReturnWithoutSaving}</a></p>";
include APPLICATION_INCPATH . 'htmlfooter.inc.php';
$_SESSION['formdata']['add_software'] = NULL;
} else {
// External variables
$name = cleanvar($_REQUEST['name']);
$tags = cleanvar($_REQUEST['tags']);
$vendor = cleanvar($_REQUEST['vendor']);
if (!empty($_REQUEST['lifetime_start'])) {
$lifetime_start = date('Y-m-d', strtotime($_REQUEST['lifetime_start']));
} else {
$lifetime_start = '';
}
if (!empty($_REQUEST['lifetime_end'])) {
$lifetime_end = date('Y-m-d', strtotime($_REQUEST['lifetime_end']));
} else {
$lifetime_end = '';
}
$_SESSION['formdata']['add_software'] = $_REQUEST;
// Add new
$errors = 0;
// check for blank name
if ($name == '') {示例11: cleanvar
$longdescription = cleanvar($_REQUEST['longdescription']);
$fileversion = cleanvar($_REQUEST['fileversion']);
$expirytype = cleanvar($_REQUEST['expiry_none']);
if ($expirytype == 'time') {
$days = cleanvar($_REQUEST['expiry_days']);
$hours = cleanvar($_REQUEST['expiry_hours']);
$minutes = cleanva($_REQUEST['expiry_minutes']);
if ($days < 1 && $hours < 1 && $minutes < 1) {
$expirydate = 0;
} else {
$expirydate = calculate_time_of_next_action($days, $hours, $minutes);
}
} elseif ($expirytype == 'date') {
$day = cleanvar($_REQUEST['day']);
$month = cleanvar($_REQUEST['month']);
$year = cleanvar($_REQUEST['year']);
$date = explode("-", $date);
$expirydate = mktime(0, 0, 0, $month, $day, $year);
} else {
$expirydate = 0;
}
// receive the uploaded file to a temp directory on the local server
if ($_FILES['file']['error'] != '' and $_FILES['file']['error'] != UPLOAD_ERR_OK) {
echo get_file_upload_error_message($_FILES['file']['error'], $_FILES['file']['name']);
} else {
$filepath = $CONFIG['attachment_fspath'] . $file_name;
$mv = move_uploaded_file($_FILES['file']['tmp_name'], $filepath);
if (!mv) {
trigger_error("Problem moving uploaded file from temp directory: {$filepath}", E_USER_WARNING);
}
if (!file_exists($filepath)) {示例12: mysql_query
break;
case 'storedashboard':
$id = $_REQUEST['id'];
$val = $_REQUEST['val'];
if ($id == $_SESSION['userid']) {
//check you're changing your own
$sql = "UPDATE `{$dbUsers}` SET dashboard = '{$val}' WHERE id = '{$id}'";
$contactresult = mysql_query($sql);
if (mysql_error()) {
trigger_error("MySQL Query Error " . mysql_error(), E_USER_ERROR);
}
}
break;
case 'checkldap':
$ldap_host = cleanvar($_REQUEST['ldap_host']);
$ldap_port = cleanvar($_REQUEST['ldap_port']);
$ldap_protocol = cleanvar($_REQUEST['ldap_protocol']);
$ldap_security = cleanvar($_REQUEST['ldap_security']);
$ldap_user = cleanvar($_REQUEST['ldap_bind_user']);
$ldap_password = cleanvar($_REQUEST['ldap_bind_pass']);
$r = ldapOpen($ldap_host, $ldap_port, $ldap_protocol, $ldap_security, $ldap_user, $ldap_password);
if ($r == -1) {
echo "0";
} else {
echo "1";
}
// Success
break;
default:
break;
}示例13: clear_form_data
echo $_SESSION['formdata']['add_product']['description'];
}
echo "</textarea>";
echo "</td></tr>";
echo "</table>\n";
echo "<p><input name='submit' type='submit' value='{$strAddProduct}' /></p>";
echo "<p class='warning'>{$strAvoidDupes}</p>";
echo "</form>\n";
echo "<p align='center'><a href='products.php'>{$strReturnWithoutSaving}</a></p>";
include APPLICATION_INCPATH . 'htmlfooter.inc.php';
clear_form_data('add_product');
} else {
// External variables
$name = cleanvar($_REQUEST['name']);
$vendor = cleanvar($_REQUEST['vendor']);
$description = cleanvar($_REQUEST['description']);
$_SESSION['formdata']['add_product'] = $_REQUEST;
// Add New
$errors = 0;
// check for blank name
if ($name == '') {
$errors++;
$_SESSION['formerrors']['add_product']['name'] = sprintf($strFieldMustNotBeBlank, $strProduct);
}
if ($vendor == '' or $vendor == "0") {
$errors++;
$_SESSION['formerrors']['add_product']['vendor'] = sprintf($strFieldMustNotBeBlank, $strVendor);
}
// add product if no errors
if ($errors == 0) {
$sql = "INSERT INTO `{$dbProducts}` (name, vendorid, description) VALUES ('{$name}', '{$vendor}', '{$description}')";示例14: cleanvar
$id = cleanvar($_POST['id']);
$distribution = cleanvar($_POST['distribution']);
$solution = cleanvar($_POST['solution']);
$kbarticle = cleanvar($_POST['kbarticle']);
$kbtitle = cleanvar($_POST['kbtitle']);
$symptoms = cleanvar($_POST['symptoms']);
$cause = cleanvar($_POST['cause']);
$question = cleanvar($_POST['question']);
$answer = cleanvar($_POST['answer']);
$workaround = cleanvar($_POST['workaround']);
$status = cleanvar($_POST['status']);
$additional = cleanvar($_POST['additional']);
$references = cleanvar($_POST['references']);
$wait = cleanvar($_POST['wait']);
$send_email = cleanvar($_POST['send_email']);
$send_engineer_email = cleanvar($_POST['send_engineer_email']);
// Close the incident
$errors = 0;
echo "<script src='{$CONFIG['application_webpath']}scripts/webtrack.js' type='text/javascript'></script>\n";
// check for blank closing status field
if ($closingstatus == 0) {
$errors = 1;
$error_string = user_alert(sprintf($strFieldMustNotBeBlank, "'{$strClosingStatus}'"), E_USER_ERROR);
}
if ($_REQUEST['summary'] == '' && $_REQUEST['solution'] == '') {
$errors = 1;
$error_string = user_alert(sprintf($strFieldMustNotBeBlank, "'{$strSummary}' / '{$strSolution}'"), E_USER_ERROR);
}
plugin_do('pre_incident_closing');
if ($errors == 0) {
$addition_errors = 0;示例15: cleanvar
echo "<table class='vertical' align='center'>";
echo "<tr><th>{$strRole}</th><td>{$obj->id}</td></tr>";
echo "<tr><th>{$strName}</th><td><input type='text' name='rolename' id='rolename' value='{$obj->rolename}' /></td></tr>";
echo "<tr><th>{$strDescription}</th><td><textarea name='description' id='description' rows='5' cols='30'>{$obj->description}</textarea></td></tr>";
echo "</table>";
echo "<input type='hidden' name='roleid' id='roleid' value='{$roleid}' />";
echo "<p><input name='submit' type='submit' value='{$strEditRole}' /></p>";
echo "</form>";
} else {
echo "<p class='warning'>{$strNoRecords}</p>";
}
include APPLICATION_INCPATH . 'htmlfooter.inc.php';
} else {
$rolename = cleanvar($_REQUEST['rolename']);
$description = cleanvar($_REQUEST['description']);
$copyfrom = cleanvar($_REQUEST['copyfrom']);
$_SESSION['formdata']['role_edit'] = $_REQUEST;
if (empty($rolename)) {
$errors++;
$_SESSION['formerrors']['role_edit']['rolename'] = sprintf($strFieldMustNotBeBlank, $strName);
}
$sql = "SELECT * FROM `{$dbRoles}` WHERE rolename = '{$rolename}' AND id != {$roleid}";
$result = mysql_query($sql);
if (mysql_error()) {
trigger_error("MySQL Query Error " . mysql_error(), E_USER_ERROR);
}
if (mysql_num_rows($result) > 0) {
$errors++;
$_SESSION['formerrors']['role_edit']['duplicaterole'] = "{$strADuplicateAlreadyExists}</p>\n";
}
if ($errors == 0) {