2010年9月15日星期三

Re: [fw-mvc] best way to remove slashes

It sounds like you have magic quotes enabled in your php.ini. It is suggested that magic quotes are disabled for Zend Framework applications (actually, for *all* PHP applications -- using magic quotes is considered insecure).

Zend_Controller_Request_* does not add slashes to input, and Zend_Db will use the proper escaping mechanism for your DB when performing queries. Typically, you should never need to use stripslashes() in a ZF application.

--
Hector Virgen
Sr. Web Developer
Walt Disney Parks and Resorts Online



On Wed, Sep 15, 2010 at 12:16 PM, sina miandashti <miandashti@gmail.com> wrote:
hi

i see zend_db or zend_request put slashes around form values before inserting them to DB

but if i use some basic html tags like <a> or <img>  when selecting text by query from the DB that slashes makes view problem.

what is the best solution for this?

is stripslashes() works?

--
________________
Sincerely
Sina Miandashti
MuSicBasE.ir & InvisionPower.ir Admin

没有评论: