Objects & mysql_real_escape_string

[2levelsabove]

How can I make each member data  of an object mysql_real_escape_string ? Im drawing a blank due to lack of sleep.

 

Thank you

 

 

foreach ($obj as &$value) {

    $value = mysql_real_escape_string($value);

}

 

???

[KevinM1]

Try:

 

foreach ($this as $value) { $value = mysql_real_escape_string($value); }

 

Keep in mind, this will apply mysql_real_escape_string to every data member of your object.  This also assumes you're using this code from within the object itself, like so:

 

class test
{
   private $firstName = "Forrest";
   private $lastName = "Gump";

   public function escapeData()
   {
      foreach ($this as $value) { $value = mysql_real_escape_string($value); }
   }
}

$example = new test();
$example->escapeData();

[2levelsabove]

Thanks a lot for the reply.

 

I was actually type casting a POST array

 

$input = (object)($_POST);

 

 

and then wanted to clean up the input.

 

Thanks again!

 

[KevinM1]

Why would you want to cast $_POST as an object?

[ignace]

You can also just do:

 

$_POST = array_map('mysql_real_escape_string', $_POST);

 

Which will apply mysql_real_escape_string to each value.

[2levelsabove]

I know this will sound retarded but I did it because i like the object syntax

 

As opposed to writing :

 

$sql="INSERT INTO DB VALUES(".$_POST['test'].")";

 

I can do

 

$sql="INSERT INTO DB VALUES("$obj->test")";

 

 

I know this is sad.