From c644128fdd49a47d791240e0e38b54cd22412bc5 Mon Sep 17 00:00:00 2001
From: Derek Allard
Date: Wed, 4 Jul 2007 23:54:32 +0000
Subject: fixed validation errors... about a zillion of em.
---
user_guide/database/queries.html | 8 +++-----
1 file changed, 3 insertions(+), 5 deletions(-)
(limited to 'user_guide/database/queries.html')
diff --git a/user_guide/database/queries.html b/user_guide/database/queries.html
index e55a5328a..013d64f33 100644
--- a/user_guide/database/queries.html
+++ b/user_guide/database/queries.html
@@ -95,15 +95,13 @@ CodeIgniter has two functions that help you do this:
$this->db->escape() This function determines the data type so that it
can escape only string data. It also automatically adds single quotes around the data so you don't have to:
-$sql = "INSERT INTO table (title) VALUES(".$this->db->escape($title).")";
+$sql = "INSERT INTO table (title) VALUES(".$this->db->escape($title).")";
$this->db->escape_str() This function escapes the data passed to it, regardless of type.
Most of the time you'll use the above function rather then this one. Use the function like this:
-$sql = "INSERT INTO table (title) VALUES('".$this->db->escape_str($title)."')";
-
-
+$sql = "INSERT INTO table (title) VALUES('".$this->db->escape_str($title)."')";
@@ -134,7 +132,7 @@ Previous Topic: Connecting to your Database
Top of Page ·
User Guide Home ·
Next Topic: Query Results
-
+
CodeIgniter · Copyright © 2007 · Ellislab, Inc.
--
cgit v1.2.3-24-g4f1b