<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> <html> <head> <meta http-equiv="content-type" content="text/html; charset=UTF-8"> <title>Sanitization</title> </head> <body><div class="manualnavbar" style="text-align: center;"> <div class="prev" style="text-align: left; float: left;"><a href="filter.examples.validation.html">Validation</a></div> <div class="next" style="text-align: right; float: right;"><a href="ref.filter.html">Filter Functions</a></div> <div class="up"><a href="filter.examples.html">Examples</a></div> <div class="home"><a href="index.html">PHP Manual</a></div> </div><hr /><div id="filter.examples.sanitization" class="section"> <h2 class="title">Sanitization</h2> <p class="para"> <div class="example" id="example-5088"> <p><strong>Example #1 Sanitizing and validating email addresses</strong></p> <div class="example-contents"> <div class="phpcode"><code><span style="color: #000000"> <span style="color: #0000BB"><?php<br />$a </span><span style="color: #007700">= </span><span style="color: #DD0000">'joe@example.org'</span><span style="color: #007700">;<br /></span><span style="color: #0000BB">$b </span><span style="color: #007700">= </span><span style="color: #DD0000">'bogus - at - example dot org'</span><span style="color: #007700">;<br /></span><span style="color: #0000BB">$c </span><span style="color: #007700">= </span><span style="color: #DD0000">'(bogus@example.org)'</span><span style="color: #007700">;<br /><br /></span><span style="color: #0000BB">$sanitized_a </span><span style="color: #007700">= </span><span style="color: #0000BB">filter_var</span><span style="color: #007700">(</span><span style="color: #0000BB">$a</span><span style="color: #007700">, </span><span style="color: #0000BB">FILTER_SANITIZE_EMAIL</span><span style="color: #007700">);<br />if (</span><span style="color: #0000BB">filter_var</span><span style="color: #007700">(</span><span style="color: #0000BB">$sanitized_a</span><span style="color: #007700">, </span><span style="color: #0000BB">FILTER_VALIDATE_EMAIL</span><span style="color: #007700">)) {<br /> echo </span><span style="color: #DD0000">"This (a) sanitized email address is considered valid.\n"</span><span style="color: #007700">;<br />}<br /><br /></span><span style="color: #0000BB">$sanitized_b </span><span style="color: #007700">= </span><span style="color: #0000BB">filter_var</span><span style="color: #007700">(</span><span style="color: #0000BB">$b</span><span style="color: #007700">, </span><span style="color: #0000BB">FILTER_SANITIZE_EMAIL</span><span style="color: #007700">);<br />if (</span><span style="color: #0000BB">filter_var</span><span style="color: #007700">(</span><span style="color: #0000BB">$sanitized_b</span><span style="color: #007700">, </span><span style="color: #0000BB">FILTER_VALIDATE_EMAIL</span><span style="color: #007700">)) {<br /> echo </span><span style="color: #DD0000">"This sanitized email address is considered valid."</span><span style="color: #007700">;<br />} else {<br /> echo </span><span style="color: #DD0000">"This (b) sanitized email address is considered invalid.\n"</span><span style="color: #007700">;<br />}<br /><br /></span><span style="color: #0000BB">$sanitized_c </span><span style="color: #007700">= </span><span style="color: #0000BB">filter_var</span><span style="color: #007700">(</span><span style="color: #0000BB">$c</span><span style="color: #007700">, </span><span style="color: #0000BB">FILTER_SANITIZE_EMAIL</span><span style="color: #007700">);<br />if (</span><span style="color: #0000BB">filter_var</span><span style="color: #007700">(</span><span style="color: #0000BB">$sanitized_c</span><span style="color: #007700">, </span><span style="color: #0000BB">FILTER_VALIDATE_EMAIL</span><span style="color: #007700">)) {<br /> echo </span><span style="color: #DD0000">"This (c) sanitized email address is considered valid.\n"</span><span style="color: #007700">;<br /> echo </span><span style="color: #DD0000">"Before: </span><span style="color: #0000BB">$c</span><span style="color: #DD0000">\n"</span><span style="color: #007700">;<br /> echo </span><span style="color: #DD0000">"After: </span><span style="color: #0000BB">$sanitized_c</span><span style="color: #DD0000">\n"</span><span style="color: #007700">; <br />}<br /></span><span style="color: #0000BB">?></span> </span> </code></div> </div> <div class="example-contents"><p>The above example will output:</p></div> <div class="example-contents screen"> <div class="cdata"><pre> This (a) sanitized email address is considered valid. This (b) sanitized email address is considered invalid. This (c) sanitized email address is considered valid. Before: (bogus@example.org) After: bogus@example.org </pre></div> </div> </div> </p> <p class="para"> <div class="example" id="example-5089"> <p><strong>Example #2 Configuring a default filter</strong></p> <div class="example-contents"> <div class="phpcode"><code><span style="color: #000000"> filter.default = full_special_chars<br />filter.default_flags = 0</span> </code></div> </div> </div> </p> </div><hr /><div class="manualnavbar" style="text-align: center;"> <div class="prev" style="text-align: left; float: left;"><a href="filter.examples.validation.html">Validation</a></div> <div class="next" style="text-align: right; float: right;"><a href="ref.filter.html">Filter Functions</a></div> <div class="up"><a href="filter.examples.html">Examples</a></div> <div class="home"><a href="index.html">PHP Manual</a></div> </div></body></html>