[SOLVED] Escaping quotes

[LLeoun]

Hi all,

 

I'm trying to do something that seems easy but I'm stuck, please help!

 

What I need is to escape ' in my php string so my javascript won't break.

 

 

The code below works but I cannot edit all the information I have and change ' into \' ($str is just an example the real thing comes from webservice and it's huge)

 

So working with this code, using $str = "Is your name O'reilly?"; without the \

how can I escape the ' ?

 

Thanks a ton !!!

 

 

 

 

<?php
$str = "Is your name O\'reilly?";

echo"
<script>
alert('";echo $str;  echo"');

</script>
";
?>

[MadTechie]

in that case, your need to escape the quotes

Options are as follows

$text = str_replace("'", "\'", $text);

$text = addslashes($text);

$text = htmlspecialchars($text, ENT_QUOTES);

$text = htmlentities($text, ENT_QUOTES);

[LLeoun]

Thanks for answering MadTechie.

The only option that seems to work is:

 

$text = htmlspecialchars($text, ENT_QUOTES);

 

But in the alert I get:

Is your name O'reilly?

Instead of:

Is your name O'reilly?

 

Thanks again

 

[redarrow]

look up the special character needed then str_replace() it

 

http://www.degraeve.com/reference/specialcharacters.php

[MadTechie]

try this

$text = htmlspecialchars(str_replace("'", "\'", $text));

basically it converts ' to \' and then encodes the htm (if needed but doesn't handle the single quotes)

[LLeoun]

Whoah, thanks a ton, fixed!!

[MadTechie]

as a note the alert showed ' but if you viewed on a page it will appear as '

 

Topic solved ?

if so please click solved