diff options
| author | Andrey Andreev <narf@devilix.net> | 2015-01-12 16:23:26 +0100 |
|---|---|---|
| committer | Andrey Andreev <narf@devilix.net> | 2015-01-12 16:23:26 +0100 |
| commit | 45a8afaabc6d09ad59bbb3c89a6cdfe8cbc3312c (patch) | |
| tree | 7ca4207099f9225b5ef74b31f48627a282e7fdf2 /user_guide_src/source/libraries/form_validation.rst | |
| parent | cd94dd7e1d8969658810ccc4158a75d2936d0a44 (diff) | |
| parent | 934d6d9797f4dadd4e4d05b12bc4d7309fedb6c3 (diff) | |
Merge branch 'develop' into feature/session
Diffstat (limited to 'user_guide_src/source/libraries/form_validation.rst')
| -rw-r--r-- | user_guide_src/source/libraries/form_validation.rst | 8 |
1 files changed, 3 insertions, 5 deletions
diff --git a/user_guide_src/source/libraries/form_validation.rst b/user_guide_src/source/libraries/form_validation.rst index aae9e3b89..f964965ec 100644 --- a/user_guide_src/source/libraries/form_validation.rst +++ b/user_guide_src/source/libraries/form_validation.rst @@ -326,14 +326,13 @@ In addition to the validation method like the ones we used above, you can also prep your data in various ways. For example, you can set up rules like this:: - $this->form_validation->set_rules('username', 'Username', 'trim|required|min_length[5]|max_length[12]|xss_clean'); + $this->form_validation->set_rules('username', 'Username', 'trim|required|min_length[5]|max_length[12]'); $this->form_validation->set_rules('password', 'Password', 'trim|required|md5'); $this->form_validation->set_rules('passconf', 'Password Confirmation', 'trim|required|matches[password]'); $this->form_validation->set_rules('email', 'Email', 'trim|required|valid_email'); -In the above example, we are "trimming" the fields, converting the -password to MD5, and running the username through the `xss_clean()` -method, which removes malicious data. +In the above example, we are "trimming" the fields, checking for length +where necessary and converting the password to MD5. **Any native PHP function that accepts one parameter can be used as a rule, like htmlspecialchars, trim, md5, etc.** @@ -1002,7 +1001,6 @@ to use: ==================== ========= ======================================================================================================= Name Parameter Description ==================== ========= ======================================================================================================= -**xss_clean** No Runs the data through the XSS filtering method, described in the :doc:`Security Class <security>` page. **prep_for_form** No Converts special characters so that HTML data can be shown in a form field without breaking it. **prep_url** No Adds "\http://" to URLs if missing. **strip_image_tags** No Strips the HTML from image tags leaving the raw URL. |