Love Fuel?    Donate

FuelPHP Forums

Ask your question about FuelPHP in the appropriate forum, or help others by answering their questions.
not to strip_tags only for one field using with input_filters
  • tevfiktevfik
    in the config file; I set my input_filters: xss_clean for javascript, and strip_tags for html attack.
    'input_filter'  => array('xss_clean','strip_tags'),

    But the problem i have only one field that i use for HTML editor. So i need to without stripped tags. Is it possible not to strip tags only for one field using with input_filters?
  • WanWizardWanWizard
    No, that is not possible (directly). The security class only passes values to these functions, so they are not aware of the variable name. The only option would be to extend the Security class and write your own filter method. Having said that, you should better use input validation on your forms, so users can only enter what they should. And FuelPHP encodes everything on output, so any HTML that will be entered will be harmless upon display. Because of this, I hardly ever see the need for an input filter.
Add a Comment

Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Sign In Apply for Membership

Categories

In this Discussion