Airship\Engine\Security\Util::noHTML PHP Méthode

Util Class Documentation Usage Examples Of Airship\Engine\Security\Util::noHTML Afficher le fichier Open project: paragonie/airship

noHTML() public static méthode

Prevents XSS attacks.

public static noHTML ( string $untrusted ) : string
$untrusted	string
Résultat	string

    public static function noHTML(string $untrusted) : string
    {
        return \htmlspecialchars($untrusted, ENT_QUOTES | ENT_HTML5, 'UTF-8');
    }

Usage Example

Exemple #1

Afficher le fichier

Fichier : CSRF.php Projet : paragonie/airship

 /**
  * Insert a CSRF token to a form
  *
  * @param string $lockTo This CSRF token is only valid for this HTTP request endpoint
  * @param bool $echo if true, echo instead of returning
  * @return string
  */
 public function insertToken(string $lockTo = '', bool $echo = true) : string
 {
     $ret = '<input type="hidden"' . ' name="' . Util::noHTML(self::FORM_TOKEN) . '"' . ' value="' . $this->getTokenString($lockTo) . '"' . ' />';
     if ($echo) {
         echo $ret;
         return '';
     }
     return $ret;
 }

All Usage Examples Of Airship\Engine\Security\Util::noHTML

Util

charWhitelist

downloadFileType

noHTML

randomString

stringLength

subString