Latte\Runtime\Filters::escapeHtmlAttr PHP Method

Filters Class Documentation Datei anzeigen Open project: nette/latte

escapeHtmlAttr() public static method

Escapes string for use inside HTML attribute value.
public static escapeHtmlAttr ( $s, $double = TRUE ) : string
return string HTML 
    public static function escapeHtmlAttr($s, $double = TRUE)
    {
        $double = $double && $s instanceof IHtmlString ? FALSE : $double;
        $s = (string) $s;
        if (strpos($s, '`') !== FALSE && strpbrk($s, ' <>"\'') === FALSE) {
            $s .= ' ';
            // protection against innerHTML mXSS vulnerability nette/nette#1496
        }
        return htmlSpecialChars($s, ENT_QUOTES, 'UTF-8', $double);
    }
Filters
breaklines
bytes
capitalize
convertTo
dataStream
date
escapeCss
escapeHtml
escapeHtmlAttr
escapeHtmlAttrConv
escapeHtmlAttrUnquoted
escapeHtmlComment
escapeHtmlRawText
escapeHtmlText
escapeICal
escapeJs
escapeXml
escapeXmlAttrUnquoted
firstUpper
getConvertor
htmlAttributes
indent
length
lower
nl2br
padLeft
padRight
repeat
replace
replaceRe
safeUrl
spacelessHtml
spacelessText
strip
stripHtml
stripTags
substring
trim
truncate
upper