当前位置: 首页>>代码示例>>PHP>>正文


PHP Sanitize::escape方法代码示例

本文整理汇总了PHP中Sanitize::escape方法的典型用法代码示例。如果您正苦于以下问题:PHP Sanitize::escape方法的具体用法?PHP Sanitize::escape怎么用?PHP Sanitize::escape使用的例子?那么, 这里精选的方法代码示例或许可以为您提供帮助。您也可以进一步了解该方法所在Sanitize的用法示例。


在下文中一共展示了Sanitize::escape方法的15个代码示例,这些例子默认根据受欢迎程度排序。您可以为喜欢或者感觉有用的代码点赞,您的评价将有助于系统推荐出更棒的PHP代码示例。

示例1: search

 function search()
 {
     $this->layout = 'ajax';
     if (!$this->RequestHandler->isAjax()) {
         $this->redirect(array('plugin' => false, 'controller' => 'dashboards', 'action' => 'index'));
     } else {
         $this->disableCache();
         if (!empty($this->params['url']['query'])) {
             // Add default scope condition
             $this->paginate['SearchIndex']['conditions'] = array('SearchIndex.active' => 1);
             // Add published condition NULL or < NOW()
             $this->paginate['SearchIndex']['conditions']['OR'] = array(array('SearchIndex.published' => null), array('SearchIndex.published <= ' => date('Y-m-d H:i:s')));
             // Add term condition, and sorting
             $this->data['SearchIndex']['term'] = $this->params['url']['query'];
             $term = $this->params['url']['query'];
             App::import('Core', 'Sanitize');
             $term = Sanitize::escape($term);
             $this->paginate['SearchIndex']['conditions'][] = "MATCH(data) AGAINST('{$term}' IN BOOLEAN MODE)";
             $this->paginate['SearchIndex']['fields'] = "*, MATCH(data) AGAINST('{$term}' IN BOOLEAN MODE) AS score";
             $this->paginate['SearchIndex']['order'] = "score DESC";
             $results = $this->paginate();
             $this->set(compact('results'));
         }
     }
 }
开发者ID:nicoeche,项目名称:Finalus,代码行数:25,代码来源:search_indexes_controller.php

示例2: view

 function view($id = null)
 {
     if (!$id) {
         $this->redirect(array('action' => 'index'));
     }
     // Make sure the user is allowed to see the account.
     $id = Sanitize::escape($id);
     if (!$this->isAuthorized($id)) {
         $this->Session->setFlash(__('Invalid account', true));
         $this->redirect(array('action' => 'index'));
     }
     $this->Account->id = $id;
     $account = Sanitize::html($this->Account->field('name'));
     $this->set('page_header', __('%s - Overview', $account));
     // Set the idata needed for nav menu.
     $type = $this->NavMenu->checkType($this->Account->getType($id));
     $this->set('navMenu', $this->NavMenu->menu($type));
     $this->set('selectedTab', 'overview');
     $this->set('accountId', $id);
     $this->set('overview', '');
     // If the request is ajax, use ajax component.
     if ($this->request->isAjax()) {
         $this->render('/Elements/ajax', 'ajax');
     }
 }
开发者ID:asanoturna,项目名称:Piggy-PHP,代码行数:25,代码来源:AccountsController.php

示例3: authenticate

 /**
  * Check if user`s login/password matches our records
  *
  * @param string $login
  * @param string $password
  * @return array
  */
 function authenticate($login, $password)
 {
     $login = Sanitize::escape($login);
     $password = sha1($password);
     $this->recursive = -1;
     return $this->findByLoginAndPassword($login, $password);
 }
开发者ID:alfo1,项目名称:wildflower,代码行数:14,代码来源:wild_user.php

示例4: editUsers

 public function editUsers($id)
 {
     $this->set('role', $this->UserRole->findById($id));
     if (isset($this->request->data['addlist'])) {
         foreach ($this->request->data['addlist'] as $user_id => $val) {
             if ($val == 0) {
                 continue;
             }
             $data = array();
             $data['role_id'] = $id;
             $data['user_id'] = $user_id;
             $this->UserRoleAccess->clear();
             $this->UserRoleAccess->save($data, false);
         }
     }
     if (isset($this->request->data['deletelist'])) {
         foreach ($this->request->data['deletelist'] as $user_id => $val) {
             if ($val == 0) {
                 continue;
             }
             $data = array();
             $data['UserRoleAccess.role_id'] = $id;
             $data['UserRoleAccess.user_id'] = $user_id;
             $this->UserRoleAccess->clear();
             $this->UserRoleAccess->deleteAll($data);
         }
     }
     $this->set('listUsers', $this->UserModel->find('all', array('order' => array('UserModel.id'), 'conditions' => array('UserModel.id NOT IN (SELECT user_id FROM user_role_access WHERE role_id = ' . Sanitize::escape($id) . ')'))));
     $this->set('selectedUsers', $this->UserRoleAccess->findAllByRoleId($id, null, array('UserRoleAccess.user_id')));
 }
开发者ID:pdkhuong,项目名称:BBG,代码行数:30,代码来源:UserRoleAccessController.php

示例5: index

 public function index()
 {
     $selectedLang = empty($this->params['pass'][0]) ? 'ara' : $this->params['pass'][0];
     $this->Session->write('Translation.selectedLang', $selectedLang);
     $this->Navigation->addCrumb('List of Translations');
     $header = __('List of Translations');
     $searchKey = $this->Session->read('Translation.SearchField');
     $languageOptions = $this->languageOptions;
     if ($this->request->is('post', 'put')) {
         if (isset($this->request->data['Translation']['SearchField'])) {
             $searchKey = $this->request->data['Translation']['SearchField'];
             $this->Session->delete('Translation.SearchField');
             $this->Session->write('Translation.SearchField', $searchKey);
         }
     }
     if (!empty($searchKey)) {
         $searchField = Sanitize::escape(trim($searchKey));
         $options['conditions']['Translation.eng LIKE'] = '%' . $searchField . '%';
     }
     $options['order'] = array('Translation.eng' => 'asc');
     //$conditions = array('order' => array('Translation.eng' => 'asc'), 'conditions' => array('Translation.eng LIKE' => '%home%'));
     $this->Paginator->settings = array_merge(array('limit' => 30, 'maxLimit' => 100), $options);
     $data = $this->Paginator->paginate('Translation');
     if (empty($data)) {
         $this->Message->alert('general.search.noResult');
     }
     if (empty($data)) {
         $this->Message->alert('general.view.noRecords');
     }
     $this->set(compact('header', 'data', 'languageOptions', 'selectedLang', 'searchKey'));
 }
开发者ID:ivanbautsita,项目名称:gestion-escolar-campus-virtuales,代码行数:31,代码来源:TranslationsController.php

示例6: testClean

 function testClean()
 {
     $string = 'test & "quote" \'other\' ;.$ symbol.' . "\r" . 'another line';
     $expected = 'test &amp; &quot;quote&quot; &#39;other&#39; ;.$ symbol.another line';
     $result = Sanitize::clean($string);
     $this->assertEqual($result, $expected);
     $string = 'test & "quote" \'other\' ;.$ symbol.' . "\r" . 'another line';
     $expected = 'test & ' . Sanitize::escape('"quote"') . ' ' . Sanitize::escape('\'other\'') . ' ;.$ symbol.another line';
     $result = Sanitize::clean($string, array('encode' => false));
     $this->assertEqual($result, $expected);
     $string = 'test & "quote" \'other\' ;.$ \\$ symbol.' . "\r" . 'another line';
     $expected = 'test & "quote" \'other\' ;.$ $ symbol.another line';
     $result = Sanitize::clean($string, array('encode' => false, 'escape' => false));
     $this->assertEqual($result, $expected);
     $string = 'test & "quote" \'other\' ;.$ \\$ symbol.' . "\r" . 'another line';
     $expected = 'test & "quote" \'other\' ;.$ \\$ symbol.another line';
     $result = Sanitize::clean($string, array('encode' => false, 'escape' => false, 'dollar' => false));
     $this->assertEqual($result, $expected);
     $string = 'test & "quote" \'other\' ;.$ symbol.' . "\r" . 'another line';
     $expected = 'test & "quote" \'other\' ;.$ symbol.' . "\r" . 'another line';
     $result = Sanitize::clean($string, array('encode' => false, 'escape' => false, 'carriage' => false));
     $this->assertEqual($result, $expected);
     $array = array(array('test & "quote" \'other\' ;.$ symbol.' . "\r" . 'another line'));
     $expected = array(array('test &amp; &quot;quote&quot; &#39;other&#39; ;.$ symbol.another line'));
     $result = Sanitize::clean($array);
     $this->assertEqual($result, $expected);
     $array = array(array('test & "quote" \'other\' ;.$ \\$ symbol.' . "\r" . 'another line'));
     $expected = array(array('test & "quote" \'other\' ;.$ $ symbol.another line'));
     $result = Sanitize::clean($array, array('encode' => false, 'escape' => false));
     $this->assertEqual($result, $expected);
 }
开发者ID:rhencke,项目名称:mozilla-cvs-history,代码行数:31,代码来源:sanitize.test.php

示例7: generate

    static function generate($view, $entity = 'Invoice')
    {
        $User = ClassRegistry::init('Lil.User');
        $Area = ClassRegistry::init('Lil.Area');
        $users = $User->find('list');
        $projects = $Area->findForUser(null, 'list');
        $task = array('fs_tasks_start' => '<fieldset>', 'fs_tasks_legend' => sprintf('<legend>%s</legend>', sprintf('<label for="task-toggle">%1$s %2$s</label>', $view->LilForm->input('Task.exists', array('checked' => (bool) $view->Form->value('Task.exists') || (bool) $view->Form->value('Task.id'), 'id' => 'task-toggle', 'label' => false, 'div' => false)), __d('lil_tasks', 'Task'))), 'fs_tasks_div_start' => '<div id="task">', 'task_id' => array('class' => $view->LilForm, 'method' => 'input', 'parameters' => array('field' => 'Task.id', 'options' => array('type' => 'hidden'))), 'task_foreign_id' => array('class' => $view->LilForm, 'method' => 'input', 'parameters' => array('field' => 'Task.foreign_id', 'options' => array('type' => 'hidden'))), 'task_model' => array('class' => $view->LilForm, 'method' => 'input', 'parameters' => array('field' => 'Task.model', 'options' => array('type' => 'hidden', 'default' => $entity))), 'task_title' => array('class' => $view->LilForm, 'method' => 'input', 'parameters' => array('field' => 'Task.title', 'options' => array('label' => __d('lil_tasks', 'Title') . ':', 'required' => false))), 'task_descript' => array('class' => $view->LilForm, 'method' => 'input', 'parameters' => array('field' => 'Task.descript', 'options' => array('type' => 'textarea', 'label' => __d('lil_tasks', 'Descript') . ':'))), 'task_deadline' => array('class' => $view->LilForm, 'method' => 'input', 'parameters' => array('field' => 'Task.deadline', 'options' => array('type' => 'date', 'label' => __d('lil_tasks', 'Deadline') . ':', 'default' => ''))), 'task_user_id' => $view->Lil->currentUser->role('admin') && sizeof($users) > 1 ? array('class' => $view->LilForm, 'method' => 'input', 'parameters' => array('field' => 'Task.user_id', 'options' => array('type' => 'select', 'options' => $users, 'label' => __d('lil_tasks', 'User') . ':', 'default' => $view->Lil->currentUser->get('id')))) : array('class' => $view->LilForm, 'method' => 'input', 'parameters' => array('field' => 'Task.user_id', 'options' => array('type' => 'hidden', 'default' => $view->Lil->currentUser->get('id')))), 'fs_tasks_div_end' => '</div>', 'fs_tasks_end' => '</fieldset>');
        App::uses('Sanitize', 'Utility');
        $toggle_confirm = Sanitize::escape(__d('lil_tasks', 'Are you sure you want to clear task data?', true));
        $d = <<<EOT
\t\t\t\$('#task-toggle').click(function() {
\t\t\t\tvar doToggle = true;
\t\t\t\tif (!\$(this).attr('checked') && (
\t\t\t\t\t(\$('#TaskTitle').val().trim() !== '') || 
\t\t\t\t\t(\$('#TaskDeadline').val().trim() !== '') || 
\t\t\t\t\t(\$('#TaskDescript').val().trim() !== '')
\t\t\t\t)) doToggle = confirm('{$toggle_confirm}');
\t\t\t\tif (doToggle) {
\t\t\t\t\t\$('#task').toggle(\$(this).attr('checked'));
\t\t\t\t\tif (!\$(this).attr('checked') && !\$('#TaskId').val()) {
\t\t\t\t\t\t\$('#TaskTitle').val('');
\t\t\t\t\t\t\$('#TaskDescript').val('');
\t\t\t\t\t\t\$('#TaskDeadline').val('');
\t\t\t\t\t}
\t\t\t\t} else {
\t\t\t\t\t\$(this).attr('checked', 'checked');
\t\t\t\t}
\t\t\t});
EOT;
        $task['javascript'][] = $d;
        // default hide task
        $task['javascript'][] = '$("#task-toggle").attr("checked") ? $("#task").show() : $("#task").hide();';
        return $task;
    }
开发者ID:malamalca,项目名称:lil-tasks,代码行数:34,代码来源:LilTasksFormInject.php

示例8: paginate

 function paginate($term = null, $paginateOptions = array())
 {
     $this->_controller->paginate = array('SearchIndex' => array_merge_recursive(array('conditions' => array(array('SearchIndex.active' => 1), 'or' => array(array('SearchIndex.published' => null), array('SearchIndex.published <= ' => date('Y-m-d H:i:s'))))), $paginateOptions));
     if (isset($this->_controller->request->params['named']['type']) && $this->_controller->request->params['named']['type'] != 'All') {
         $this->_controller->request->data['SearchIndex']['type'] = Sanitize::escape($this->_controller->request->params['named']['type']);
         $this->_controller->paginate['SearchIndex']['conditions']['model'] = $this->_controller->data['SearchIndex']['type'];
     }
     // Add term condition, and sorting
     if (!$term && isset($this->_controller->request->params['named']['term'])) {
         $term = $this->_controller->request->params['named']['term'];
     }
     if ($term) {
         $term = Sanitize::escape($term);
         $this->_controller->request->data['SearchIndex']['term'] = $term;
         $term = implode(' ', array_map(array($this, 'replace'), preg_split('/[\\s_]/', $term))) . '*';
         if ($this->like) {
             $this->_controller->paginate['SearchIndex']['conditions'][] = array('or' => array("MATCH(data) AGAINST('{$term}')", 'SearchIndex.data LIKE' => "%{$this->_controller->data['SearchIndex']['term']}%"));
         } else {
             $this->_controller->paginate['SearchIndex']['conditions'][] = "MATCH(data) AGAINST('{$term}' IN BOOLEAN MODE)";
         }
         $this->_controller->paginate['SearchIndex']['fields'] = "*, MATCH(data) AGAINST('{$term}' IN BOOLEAN MODE) AS score";
         if (empty($this->_controller->paginate['SearchIndex']['order'])) {
             $this->_controller->paginate['SearchIndex']['order'] = "score DESC";
         }
     }
     return $this->_controller->paginate('SearchIndex');
 }
开发者ID:josegonzalez,项目名称:searchable,代码行数:27,代码来源:SearchComponent.php

示例9: index

 function index()
 {
     Configure::write('debug', '0');
     $this->layout = '2col_layout';
     $san = new Sanitize();
     $filter = "";
     $limit = 10;
     $offset = 0;
     $url = $this->webroot . "torrents/";
     if (!empty($this->params['url']['name'])) {
         $filter = "t.name like '%" . $san->escape($this->params['url']['name']) . "%'";
         $url .= "?name=" . $this->params['url']['name'];
     }
     if (!empty($this->params['url']['c'])) {
         $filter .= !empty($filter) ? " AND " : "";
         $filter .= "cg.id = " . $san->escape($this->params['url']['c']);
         $url .= strpos($url, "?") === false ? "?" : "&";
         $url .= 'c=' . $this->params['url']['c'];
     }
     if (!empty($this->params['url']['t'])) {
         $filter .= !empty($filter) ? " AND " : "";
         $filter .= "t.free_type = " . $san->escape($this->params['url']['t']);
         $url .= strpos($url, "?") === false ? "?" : "&";
         $url .= 't=' . $this->params['url']['t'];
     }
     if (!empty($this->params['url']['offset']) && is_numeric($this->params['url']['offset'])) {
         $offset = $this->params['url']['offset'];
     }
     $filter .= !empty($filter) ? " AND " : "";
     $filter .= "t.free_type != 2 AND deleted != 1";
     if (!$this->isAuthorized($this->ZTAuth->user('username'), $this->name, "hidden")) {
         $filter .= ' AND t.free_type != 5';
     }
     if (empty($filter)) {
         $filter = "1";
     }
     $sql = "SELECT t.id, t.name, t.image1, t.size, t.times_completed, t.seeders, t.leechers, t.added, c.flagpic, t.free_type, " . "u.username, u.id, g.status_style, SUM(r.rating) as total, COUNT(r.id) as votes, cg.name, cg.id " . "FROM torrents t JOIN users u ON t.owner = u.id " . "LEFT JOIN groups g ON u.group_id = g.id " . "JOIN countries c ON u.country = c.id " . "LEFT JOIN categories cg ON t.category = cg.id " . "LEFT JOIN ratings r ON r.torrent = t.id WHERE {$filter} GROUP BY t.id ORDER BY t.added DESC LIMIT {$limit} OFFSET {$offset}";
     $tsql = "SELECT count(t.id) as total from torrents t LEFT JOIN categories cg ON t.category = cg.id WHERE {$filter}";
     $total = $this->Torrent->query($tsql);
     $torrents = $this->Torrent->query($sql);
     $this->set('torrents', $torrents);
     $this->set('total', $total[0][0]['total']);
     $this->set('offset', $offset);
     $this->set('request_url', $url);
     $this->set('pageTitle', 'Список раздач');
 }
开发者ID:BGCX262,项目名称:ztrackerengine-svn-to-git,代码行数:46,代码来源:torrents_controller.php

示例10: index

 public function index()
 {
     $this->pageTitle = __('ALUMNI_INDEX_TITLE', true);
     $conditions = array();
     //
     // vyhladavanie
     if (isset($_POST['name'])) {
         //
         // osetrenie
         uses('sanitize');
         $sanit = new Sanitize();
         //
         // podmienka pre vystup
         $conditions = array('or' => array('User.username ILIKE' => '%' . $sanit->escape($_POST['name']) . '%', 'User.first_name ILIKE' => '%' . $sanit->escape($_POST['name']) . '%', 'User.middle_name ILIKE' => '%' . $sanit->escape($_POST['name']) . '%', 'User.last_name ILIKE' => '%' . $sanit->escape($_POST['name']) . '%'));
         //
         // ak bol zadany aj odbor, tak ho zakomponuj do podmienky
         if (@$_POST['specialization_id'] != '') {
             $conditions = array('and' => array('Graduate.specialization_id' => $_POST['specialization_id'], $conditions));
         }
         $_SESSION['search_cond'] = $conditions;
         $_SESSION['search_name'] = $sanit->html($_POST['name']);
         $_SESSION['search_specialization_id'] = $_POST['specialization_id'];
     } else {
         if (isset($_SESSION['search_cond'])) {
             //
             // ak listujem medzi strankami
             $conditions = $_SESSION['search_cond'];
         }
     }
     $this->Graduate->recursion = 2;
     $graduates = $this->paginate('Graduate', $conditions);
     //print_r($graduates);
     $this->set('graduates', $graduates);
     // kym nefunguje rekurzivne tahanie typu studia
     $study_type_names = array();
     $study_type_names['sk'] = $this->StudyType->find("list", array('fields' => array('StudyType.id', 'StudyType.name_sk')));
     $study_type_names['en'] = $this->StudyType->find("list", array('fields' => array('StudyType.id', 'StudyType.name_en')));
     //
     // najdi vsetky typy podla priority
     $this->set('study_types', $this->StudyType->findAll(null, null, array('StudyType.priority')));
     $this->set('study_type_names', $study_type_names);
     $this->set('lang', $this->Session->read('Config.language'));
     $this->set('total_graduate_count', $this->Graduate->findCount());
 }
开发者ID:googlecode-mirror,项目名称:timovy2007,代码行数:44,代码来源:alumni_controller.php

示例11: refundTotal

 /**
  * refundTotal method
  *
  * @param int $transaction_id A transaction ID
  * @return boolean|float Returns the total of all refunds for the given 
  * transaction, false if the transaction is invalid
  */
 public function refundTotal($transaction_id)
 {
     if (!$this->validForeignKey($transaction_id, 'Transaction')) {
         return false;
     }
     $this->virtualFields['total_amount'] = 0;
     $query = sprintf("\n\t\t\tSELECT SUM(R.amount) AS Refund__total_amount \n\t\t\tFROM transactions T \n\t\t\tLEFT JOIN refunds R ON T.id = R.transaction_id \n\t\t\tWHERE T.id='%s'", Sanitize::escape($transaction_id));
     $refund = $this->query($query, false);
     return $refund[0]['Refund']['total_amount'];
 }
开发者ID:mbp-informatics,项目名称:payments.mousebiology.org,代码行数:17,代码来源:Refund.php

示例12: isAuthorized

 function isAuthorized($account)
 {
     $accountId = Sanitize::escape($account);
     $this->loadModel('Account');
     $this->Account->id = $accountId;
     if ($this->Account->field('user_id') == $this->Auth->user('id')) {
         return true;
     }
     return false;
 }
开发者ID:asanoturna,项目名称:Piggy-PHP,代码行数:10,代码来源:AppController.php

示例13: admin_index

 function admin_index($class)
 {
     $conditions = array('Term.class' => $class);
     if (isset($this->data['Xpagin']['search']) && !empty($this->data['Xpagin']['search'])) {
         $conditions = array('Term.nombre LIKE' => '%' . Sanitize::escape($this->data['Xpagin']['search']) . '%');
     }
     $this->set("recordset", $this->paginate("Term", $conditions));
     if ($class == "Category") {
         $this->set("parents", $this->Term->generatetreelist(array('Term.class' => 'Category'), null, null, '-- '));
     }
 }
开发者ID:roae,项目名称:hello-world,代码行数:11,代码来源:terms_controller.php

示例14: search

 function search()
 {
     $this->Line->recursive = 1;
     $conditions = array();
     if (isset($this->passedArgs)) {
         $input = $_GET["q"];
         $q = Sanitize::escape($input);
         $conditions = array("Post.title LIKE '%{$q}%' OR Post.content LIKE '%{$q}%'");
     }
     $this->set('posts', $this->paginate('Post', $conditions));
 }
开发者ID:jcalado,项目名称:planetuga,代码行数:11,代码来源:posts_controller.php

示例15: index

 function index()
 {
     App::import('Sanitize');
     if (isset($this->params['url']['q'])) {
         $q = '%' . Sanitize::escape($this->params['url']['q']) . '%';
     } else {
         $q = '%%';
     }
     $classrooms = $this->paginate('Classroom', array("OR" => array('Classroom.name LIKE' => $q, 'Classroom.type LIKE' => $q)));
     $this->set('classrooms', $classrooms);
     $this->set('q', isset($this->params['url']['q']) ? $this->params['url']['q'] : '');
 }
开发者ID:recrea,项目名称:academic,代码行数:12,代码来源:classrooms_controller.php


注:本文中的Sanitize::escape方法示例由纯净天空整理自Github/MSDocs等开源代码及文档管理平台,相关代码片段筛选自各路编程大神贡献的开源项目,源码版权归原作者所有,传播和使用请参考对应项目的License;未经允许,请勿转载。