本文整理汇总了PHP中Sanitize::escape方法的典型用法代码示例。如果您正苦于以下问题:PHP Sanitize::escape方法的具体用法?PHP Sanitize::escape怎么用?PHP Sanitize::escape使用的例子?那么恭喜您, 这里精选的方法代码示例或许可以为您提供帮助。您也可以进一步了解该方法所在类Sanitize的用法示例。
在下文中一共展示了Sanitize::escape方法的15个代码示例,这些例子默认根据受欢迎程度排序。您可以为喜欢或者感觉有用的代码点赞,您的评价将有助于系统推荐出更棒的PHP代码示例。
示例1: search
function search()
{
$this->layout = 'ajax';
if (!$this->RequestHandler->isAjax()) {
$this->redirect(array('plugin' => false, 'controller' => 'dashboards', 'action' => 'index'));
} else {
$this->disableCache();
if (!empty($this->params['url']['query'])) {
// Add default scope condition
$this->paginate['SearchIndex']['conditions'] = array('SearchIndex.active' => 1);
// Add published condition NULL or < NOW()
$this->paginate['SearchIndex']['conditions']['OR'] = array(array('SearchIndex.published' => null), array('SearchIndex.published <= ' => date('Y-m-d H:i:s')));
// Add term condition, and sorting
$this->data['SearchIndex']['term'] = $this->params['url']['query'];
$term = $this->params['url']['query'];
App::import('Core', 'Sanitize');
$term = Sanitize::escape($term);
$this->paginate['SearchIndex']['conditions'][] = "MATCH(data) AGAINST('{$term}' IN BOOLEAN MODE)";
$this->paginate['SearchIndex']['fields'] = "*, MATCH(data) AGAINST('{$term}' IN BOOLEAN MODE) AS score";
$this->paginate['SearchIndex']['order'] = "score DESC";
$results = $this->paginate();
$this->set(compact('results'));
}
}
}示例2: view
function view($id = null)
{
if (!$id) {
$this->redirect(array('action' => 'index'));
}
// Make sure the user is allowed to see the account.
$id = Sanitize::escape($id);
if (!$this->isAuthorized($id)) {
$this->Session->setFlash(__('Invalid account', true));
$this->redirect(array('action' => 'index'));
}
$this->Account->id = $id;
$account = Sanitize::html($this->Account->field('name'));
$this->set('page_header', __('%s - Overview', $account));
// Set the idata needed for nav menu.
$type = $this->NavMenu->checkType($this->Account->getType($id));
$this->set('navMenu', $this->NavMenu->menu($type));
$this->set('selectedTab', 'overview');
$this->set('accountId', $id);
$this->set('overview', '');
// If the request is ajax, use ajax component.
if ($this->request->isAjax()) {
$this->render('/Elements/ajax', 'ajax');
}
}示例3: authenticate
/**
* Check if user`s login/password matches our records
*
* @param string $login
* @param string $password
* @return array
*/
function authenticate($login, $password)
{
$login = Sanitize::escape($login);
$password = sha1($password);
$this->recursive = -1;
return $this->findByLoginAndPassword($login, $password);
}示例4: editUsers
public function editUsers($id)
{
$this->set('role', $this->UserRole->findById($id));
if (isset($this->request->data['addlist'])) {
foreach ($this->request->data['addlist'] as $user_id => $val) {
if ($val == 0) {
continue;
}
$data = array();
$data['role_id'] = $id;
$data['user_id'] = $user_id;
$this->UserRoleAccess->clear();
$this->UserRoleAccess->save($data, false);
}
}
if (isset($this->request->data['deletelist'])) {
foreach ($this->request->data['deletelist'] as $user_id => $val) {
if ($val == 0) {
continue;
}
$data = array();
$data['UserRoleAccess.role_id'] = $id;
$data['UserRoleAccess.user_id'] = $user_id;
$this->UserRoleAccess->clear();
$this->UserRoleAccess->deleteAll($data);
}
}
$this->set('listUsers', $this->UserModel->find('all', array('order' => array('UserModel.id'), 'conditions' => array('UserModel.id NOT IN (SELECT user_id FROM user_role_access WHERE role_id = ' . Sanitize::escape($id) . ')'))));
$this->set('selectedUsers', $this->UserRoleAccess->findAllByRoleId($id, null, array('UserRoleAccess.user_id')));
}示例5: index
public function index()
{
$selectedLang = empty($this->params['pass'][0]) ? 'ara' : $this->params['pass'][0];
$this->Session->write('Translation.selectedLang', $selectedLang);
$this->Navigation->addCrumb('List of Translations');
$header = __('List of Translations');
$searchKey = $this->Session->read('Translation.SearchField');
$languageOptions = $this->languageOptions;
if ($this->request->is('post', 'put')) {
if (isset($this->request->data['Translation']['SearchField'])) {
$searchKey = $this->request->data['Translation']['SearchField'];
$this->Session->delete('Translation.SearchField');
$this->Session->write('Translation.SearchField', $searchKey);
}
}
if (!empty($searchKey)) {
$searchField = Sanitize::escape(trim($searchKey));
$options['conditions']['Translation.eng LIKE'] = '%' . $searchField . '%';
}
$options['order'] = array('Translation.eng' => 'asc');
//$conditions = array('order' => array('Translation.eng' => 'asc'), 'conditions' => array('Translation.eng LIKE' => '%home%'));
$this->Paginator->settings = array_merge(array('limit' => 30, 'maxLimit' => 100), $options);
$data = $this->Paginator->paginate('Translation');
if (empty($data)) {
$this->Message->alert('general.search.noResult');
}
if (empty($data)) {
$this->Message->alert('general.view.noRecords');
}
$this->set(compact('header', 'data', 'languageOptions', 'selectedLang', 'searchKey'));
}示例6: testClean
function testClean()
{
$string = 'test & "quote" \'other\' ;.$ symbol.' . "\r" . 'another line';
$expected = 'test & "quote" 'other' ;.$ symbol.another line';
$result = Sanitize::clean($string);
$this->assertEqual($result, $expected);
$string = 'test & "quote" \'other\' ;.$ symbol.' . "\r" . 'another line';
$expected = 'test & ' . Sanitize::escape('"quote"') . ' ' . Sanitize::escape('\'other\'') . ' ;.$ symbol.another line';
$result = Sanitize::clean($string, array('encode' => false));
$this->assertEqual($result, $expected);
$string = 'test & "quote" \'other\' ;.$ \\$ symbol.' . "\r" . 'another line';
$expected = 'test & "quote" \'other\' ;.$ $ symbol.another line';
$result = Sanitize::clean($string, array('encode' => false, 'escape' => false));
$this->assertEqual($result, $expected);
$string = 'test & "quote" \'other\' ;.$ \\$ symbol.' . "\r" . 'another line';
$expected = 'test & "quote" \'other\' ;.$ \\$ symbol.another line';
$result = Sanitize::clean($string, array('encode' => false, 'escape' => false, 'dollar' => false));
$this->assertEqual($result, $expected);
$string = 'test & "quote" \'other\' ;.$ symbol.' . "\r" . 'another line';
$expected = 'test & "quote" \'other\' ;.$ symbol.' . "\r" . 'another line';
$result = Sanitize::clean($string, array('encode' => false, 'escape' => false, 'carriage' => false));
$this->assertEqual($result, $expected);
$array = array(array('test & "quote" \'other\' ;.$ symbol.' . "\r" . 'another line'));
$expected = array(array('test & "quote" 'other' ;.$ symbol.another line'));
$result = Sanitize::clean($array);
$this->assertEqual($result, $expected);
$array = array(array('test & "quote" \'other\' ;.$ \\$ symbol.' . "\r" . 'another line'));
$expected = array(array('test & "quote" \'other\' ;.$ $ symbol.another line'));
$result = Sanitize::clean($array, array('encode' => false, 'escape' => false));
$this->assertEqual($result, $expected);
}示例7: generate
static function generate($view, $entity = 'Invoice')
{
$User = ClassRegistry::init('Lil.User');
$Area = ClassRegistry::init('Lil.Area');
$users = $User->find('list');
$projects = $Area->findForUser(null, 'list');
$task = array('fs_tasks_start' => '<fieldset>', 'fs_tasks_legend' => sprintf('<legend>%s</legend>', sprintf('<label for="task-toggle">%1$s %2$s</label>', $view->LilForm->input('Task.exists', array('checked' => (bool) $view->Form->value('Task.exists') || (bool) $view->Form->value('Task.id'), 'id' => 'task-toggle', 'label' => false, 'div' => false)), __d('lil_tasks', 'Task'))), 'fs_tasks_div_start' => '<div id="task">', 'task_id' => array('class' => $view->LilForm, 'method' => 'input', 'parameters' => array('field' => 'Task.id', 'options' => array('type' => 'hidden'))), 'task_foreign_id' => array('class' => $view->LilForm, 'method' => 'input', 'parameters' => array('field' => 'Task.foreign_id', 'options' => array('type' => 'hidden'))), 'task_model' => array('class' => $view->LilForm, 'method' => 'input', 'parameters' => array('field' => 'Task.model', 'options' => array('type' => 'hidden', 'default' => $entity))), 'task_title' => array('class' => $view->LilForm, 'method' => 'input', 'parameters' => array('field' => 'Task.title', 'options' => array('label' => __d('lil_tasks', 'Title') . ':', 'required' => false))), 'task_descript' => array('class' => $view->LilForm, 'method' => 'input', 'parameters' => array('field' => 'Task.descript', 'options' => array('type' => 'textarea', 'label' => __d('lil_tasks', 'Descript') . ':'))), 'task_deadline' => array('class' => $view->LilForm, 'method' => 'input', 'parameters' => array('field' => 'Task.deadline', 'options' => array('type' => 'date', 'label' => __d('lil_tasks', 'Deadline') . ':', 'default' => ''))), 'task_user_id' => $view->Lil->currentUser->role('admin') && sizeof($users) > 1 ? array('class' => $view->LilForm, 'method' => 'input', 'parameters' => array('field' => 'Task.user_id', 'options' => array('type' => 'select', 'options' => $users, 'label' => __d('lil_tasks', 'User') . ':', 'default' => $view->Lil->currentUser->get('id')))) : array('class' => $view->LilForm, 'method' => 'input', 'parameters' => array('field' => 'Task.user_id', 'options' => array('type' => 'hidden', 'default' => $view->Lil->currentUser->get('id')))), 'fs_tasks_div_end' => '</div>', 'fs_tasks_end' => '</fieldset>');
App::uses('Sanitize', 'Utility');
$toggle_confirm = Sanitize::escape(__d('lil_tasks', 'Are you sure you want to clear task data?', true));
$d = <<<EOT
\t\t\t\$('#task-toggle').click(function() {
\t\t\t\tvar doToggle = true;
\t\t\t\tif (!\$(this).attr('checked') && (
\t\t\t\t\t(\$('#TaskTitle').val().trim() !== '') ||
\t\t\t\t\t(\$('#TaskDeadline').val().trim() !== '') ||
\t\t\t\t\t(\$('#TaskDescript').val().trim() !== '')
\t\t\t\t)) doToggle = confirm('{$toggle_confirm}');
\t\t\t\tif (doToggle) {
\t\t\t\t\t\$('#task').toggle(\$(this).attr('checked'));
\t\t\t\t\tif (!\$(this).attr('checked') && !\$('#TaskId').val()) {
\t\t\t\t\t\t\$('#TaskTitle').val('');
\t\t\t\t\t\t\$('#TaskDescript').val('');
\t\t\t\t\t\t\$('#TaskDeadline').val('');
\t\t\t\t\t}
\t\t\t\t} else {
\t\t\t\t\t\$(this).attr('checked', 'checked');
\t\t\t\t}
\t\t\t});
EOT;
$task['javascript'][] = $d;
// default hide task
$task['javascript'][] = '$("#task-toggle").attr("checked") ? $("#task").show() : $("#task").hide();';
return $task;
}示例8: paginate
function paginate($term = null, $paginateOptions = array())
{
$this->_controller->paginate = array('SearchIndex' => array_merge_recursive(array('conditions' => array(array('SearchIndex.active' => 1), 'or' => array(array('SearchIndex.published' => null), array('SearchIndex.published <= ' => date('Y-m-d H:i:s'))))), $paginateOptions));
if (isset($this->_controller->request->params['named']['type']) && $this->_controller->request->params['named']['type'] != 'All') {
$this->_controller->request->data['SearchIndex']['type'] = Sanitize::escape($this->_controller->request->params['named']['type']);
$this->_controller->paginate['SearchIndex']['conditions']['model'] = $this->_controller->data['SearchIndex']['type'];
}
// Add term condition, and sorting
if (!$term && isset($this->_controller->request->params['named']['term'])) {
$term = $this->_controller->request->params['named']['term'];
}
if ($term) {
$term = Sanitize::escape($term);
$this->_controller->request->data['SearchIndex']['term'] = $term;
$term = implode(' ', array_map(array($this, 'replace'), preg_split('/[\\s_]/', $term))) . '*';
if ($this->like) {
$this->_controller->paginate['SearchIndex']['conditions'][] = array('or' => array("MATCH(data) AGAINST('{$term}')", 'SearchIndex.data LIKE' => "%{$this->_controller->data['SearchIndex']['term']}%"));
} else {
$this->_controller->paginate['SearchIndex']['conditions'][] = "MATCH(data) AGAINST('{$term}' IN BOOLEAN MODE)";
}
$this->_controller->paginate['SearchIndex']['fields'] = "*, MATCH(data) AGAINST('{$term}' IN BOOLEAN MODE) AS score";
if (empty($this->_controller->paginate['SearchIndex']['order'])) {
$this->_controller->paginate['SearchIndex']['order'] = "score DESC";
}
}
return $this->_controller->paginate('SearchIndex');
}示例9: index
function index()
{
Configure::write('debug', '0');
$this->layout = '2col_layout';
$san = new Sanitize();
$filter = "";
$limit = 10;
$offset = 0;
$url = $this->webroot . "torrents/";
if (!empty($this->params['url']['name'])) {
$filter = "t.name like '%" . $san->escape($this->params['url']['name']) . "%'";
$url .= "?name=" . $this->params['url']['name'];
}
if (!empty($this->params['url']['c'])) {
$filter .= !empty($filter) ? " AND " : "";
$filter .= "cg.id = " . $san->escape($this->params['url']['c']);
$url .= strpos($url, "?") === false ? "?" : "&";
$url .= 'c=' . $this->params['url']['c'];
}
if (!empty($this->params['url']['t'])) {
$filter .= !empty($filter) ? " AND " : "";
$filter .= "t.free_type = " . $san->escape($this->params['url']['t']);
$url .= strpos($url, "?") === false ? "?" : "&";
$url .= 't=' . $this->params['url']['t'];
}
if (!empty($this->params['url']['offset']) && is_numeric($this->params['url']['offset'])) {
$offset = $this->params['url']['offset'];
}
$filter .= !empty($filter) ? " AND " : "";
$filter .= "t.free_type != 2 AND deleted != 1";
if (!$this->isAuthorized($this->ZTAuth->user('username'), $this->name, "hidden")) {
$filter .= ' AND t.free_type != 5';
}
if (empty($filter)) {
$filter = "1";
}
$sql = "SELECT t.id, t.name, t.image1, t.size, t.times_completed, t.seeders, t.leechers, t.added, c.flagpic, t.free_type, " . "u.username, u.id, g.status_style, SUM(r.rating) as total, COUNT(r.id) as votes, cg.name, cg.id " . "FROM torrents t JOIN users u ON t.owner = u.id " . "LEFT JOIN groups g ON u.group_id = g.id " . "JOIN countries c ON u.country = c.id " . "LEFT JOIN categories cg ON t.category = cg.id " . "LEFT JOIN ratings r ON r.torrent = t.id WHERE {$filter} GROUP BY t.id ORDER BY t.added DESC LIMIT {$limit} OFFSET {$offset}";
$tsql = "SELECT count(t.id) as total from torrents t LEFT JOIN categories cg ON t.category = cg.id WHERE {$filter}";
$total = $this->Torrent->query($tsql);
$torrents = $this->Torrent->query($sql);
$this->set('torrents', $torrents);
$this->set('total', $total[0][0]['total']);
$this->set('offset', $offset);
$this->set('request_url', $url);
$this->set('pageTitle', 'Список раздач');
}示例10: index
public function index()
{
$this->pageTitle = __('ALUMNI_INDEX_TITLE', true);
$conditions = array();
//
// vyhladavanie
if (isset($_POST['name'])) {
//
// osetrenie
uses('sanitize');
$sanit = new Sanitize();
//
// podmienka pre vystup
$conditions = array('or' => array('User.username ILIKE' => '%' . $sanit->escape($_POST['name']) . '%', 'User.first_name ILIKE' => '%' . $sanit->escape($_POST['name']) . '%', 'User.middle_name ILIKE' => '%' . $sanit->escape($_POST['name']) . '%', 'User.last_name ILIKE' => '%' . $sanit->escape($_POST['name']) . '%'));
//
// ak bol zadany aj odbor, tak ho zakomponuj do podmienky
if (@$_POST['specialization_id'] != '') {
$conditions = array('and' => array('Graduate.specialization_id' => $_POST['specialization_id'], $conditions));
}
$_SESSION['search_cond'] = $conditions;
$_SESSION['search_name'] = $sanit->html($_POST['name']);
$_SESSION['search_specialization_id'] = $_POST['specialization_id'];
} else {
if (isset($_SESSION['search_cond'])) {
//
// ak listujem medzi strankami
$conditions = $_SESSION['search_cond'];
}
}
$this->Graduate->recursion = 2;
$graduates = $this->paginate('Graduate', $conditions);
//print_r($graduates);
$this->set('graduates', $graduates);
// kym nefunguje rekurzivne tahanie typu studia
$study_type_names = array();
$study_type_names['sk'] = $this->StudyType->find("list", array('fields' => array('StudyType.id', 'StudyType.name_sk')));
$study_type_names['en'] = $this->StudyType->find("list", array('fields' => array('StudyType.id', 'StudyType.name_en')));
//
// najdi vsetky typy podla priority
$this->set('study_types', $this->StudyType->findAll(null, null, array('StudyType.priority')));
$this->set('study_type_names', $study_type_names);
$this->set('lang', $this->Session->read('Config.language'));
$this->set('total_graduate_count', $this->Graduate->findCount());
}示例11: refundTotal
/**
* refundTotal method
*
* @param int $transaction_id A transaction ID
* @return boolean|float Returns the total of all refunds for the given
* transaction, false if the transaction is invalid
*/
public function refundTotal($transaction_id)
{
if (!$this->validForeignKey($transaction_id, 'Transaction')) {
return false;
}
$this->virtualFields['total_amount'] = 0;
$query = sprintf("\n\t\t\tSELECT SUM(R.amount) AS Refund__total_amount \n\t\t\tFROM transactions T \n\t\t\tLEFT JOIN refunds R ON T.id = R.transaction_id \n\t\t\tWHERE T.id='%s'", Sanitize::escape($transaction_id));
$refund = $this->query($query, false);
return $refund[0]['Refund']['total_amount'];
}示例12: isAuthorized
function isAuthorized($account)
{
$accountId = Sanitize::escape($account);
$this->loadModel('Account');
$this->Account->id = $accountId;
if ($this->Account->field('user_id') == $this->Auth->user('id')) {
return true;
}
return false;
}示例13: admin_index
function admin_index($class)
{
$conditions = array('Term.class' => $class);
if (isset($this->data['Xpagin']['search']) && !empty($this->data['Xpagin']['search'])) {
$conditions = array('Term.nombre LIKE' => '%' . Sanitize::escape($this->data['Xpagin']['search']) . '%');
}
$this->set("recordset", $this->paginate("Term", $conditions));
if ($class == "Category") {
$this->set("parents", $this->Term->generatetreelist(array('Term.class' => 'Category'), null, null, '-- '));
}
}示例14: search
function search()
{
$this->Line->recursive = 1;
$conditions = array();
if (isset($this->passedArgs)) {
$input = $_GET["q"];
$q = Sanitize::escape($input);
$conditions = array("Post.title LIKE '%{$q}%' OR Post.content LIKE '%{$q}%'");
}
$this->set('posts', $this->paginate('Post', $conditions));
}示例15: index
function index()
{
App::import('Sanitize');
if (isset($this->params['url']['q'])) {
$q = '%' . Sanitize::escape($this->params['url']['q']) . '%';
} else {
$q = '%%';
}
$classrooms = $this->paginate('Classroom', array("OR" => array('Classroom.name LIKE' => $q, 'Classroom.type LIKE' => $q)));
$this->set('classrooms', $classrooms);
$this->set('q', isset($this->params['url']['q']) ? $this->params['url']['q'] : '');
}