Grep Again (was: MySQL UPDATE)

This WebDNA talk-list message is from

2007

It keeps the original formatting. numero = 68870
interpreted = N
texte = Thanks Marc. To clarify, I'm trying to replicate themysql_real_escape_string() function from PHP5. I have the following grepstatement, but it won't put the backslash in front of the pattern.This: [grep search=[\'"]&replace=\\1]\'"[/grep]Should return this: \\\'\"But, I'm getting this: \\\Ideas?On 4/24/07 5:15 PM, "Marc Thompson" wrote:> Clint,> As a rule, before writing any user entered data into a database, I> cleanse it. Here's an example:> [replace db=mydb.db&eqSKUdatarq=[cart]][formvariables> name=_&exact=F][getchars start=2][name][/getchars]=[Grep> search=[^,-.%@_A-Za-z0-9> ]&replace=][url][value][/url][/Grep]&[/formvariables][/replace]> > Here's what I use to clean up form variables passed to a page:> [formvariables]> [text][name]=[Grep search=[^,-.%@_A-Za-z0-9> ]&replace=][value][/Grep][/text]> [/formvariables]> > Notice the line wrap immediately following the 0-9. That is a space.> > HTH,> Marc> > Clint Davis wrote:> >> I need to use WebDNA to update a MySQL table. Does anyone have some words of>> advice (or code preferably) to "cleanse" the user input before executing the>> SQL UPDATE statement?-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Associated Messages, from the most recent to the oldest:

Re: Grep Again (was: MySQL UPDATE) ( Clint Davis 2007) Grep Again (was: MySQL UPDATE) ( Clint Davis 2007)

Thanks Marc. To clarify, I'm trying to replicate themysql_real_escape_string() function from PHP5. I have the following grepstatement, but it won't put the backslash in front of the pattern.This: [grep search=[\'"]&replace=\\1]\'"[/grep]Should return this: \\\'\"But, I'm getting this: \\\Ideas?On 4/24/07 5:15 PM, "Marc Thompson" wrote:> Clint,> As a rule, before writing any user entered data into a database, I> cleanse it. Here's an example:> [replace db=mydb.db&eqSKUdatarq=[cart]][formvariables> name=_&exact=F][getchars start=2][name][/getchars]=[Grep> search=[^,-.%@_A-Za-z0-9> ]&replace=][url][value][/url][/Grep]&[/formvariables][/replace]> > Here's what I use to clean up form variables passed to a page:> [formvariables]> [text][name]=[Grep search=[^,-.%@_A-Za-z0-9> ]&replace=][value][/Grep][/text]> [/formvariables]> > Notice the line wrap immediately following the 0-9. That is a space.> > HTH,> Marc> > Clint Davis wrote:> >> I need to use WebDNA to update a MySQL table. Does anyone have some words of>> advice (or code preferably) to "cleanse" the user input before executing the>> SQL UPDATE statement?-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Clint Davis

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Integrating Bar Codes with WebDNA (2006) Autoreturn Submit? (1997) [tcp connect] (1998) [WebDNA] Authorize.net SIM, Server Integration Method (2011) Summing fields (1997) [OT] Classic Mac (2008) WebCatalog stalls (1998) XML Syntax, Cookies and Variables.... (2004) before after on (1998) WebCat2b13MacPlugin - [math][date][/math] problem (1997) [listfiles] problems (1997) Is everybody getting all the posts? (2002) [WebDNA] Add to Cart,/ show cart: unable to access page (2016) OK, here's a new one (2002) two of the same named db's open at once (1998) dollar $ signs in database (2000) OT: Amazon Patents (2000) Out of the woodwork (2007) [WebDNA] improvements (2015) More on [purchase] (1998)