andibakker Posted May 27, 2010 Share Posted May 27, 2010 I am quite confused about htmlentities. I have a form where the user must edit username / password. Both username and password can contain special chars. Do I only use htmlentities when I display the field in the form or do I use it when I update the database. I want the username to be saved / displayed as it was entered - even if it is 'aa&+-' Quote Link to comment https://forums.phpfreaks.com/topic/203073-htmlentities/ Share on other sites More sharing options...
Adam Posted May 27, 2010 Share Posted May 27, 2010 You only *need* to convert the characters to HTML entities when you're outputting to the browser. You don't want to store them converted in the database like that as the data would be inaccurate for comparison, but also the size of the string would be modified which may cause problems if the username has a max char length. Quote Link to comment https://forums.phpfreaks.com/topic/203073-htmlentities/#findComment-1064070 Share on other sites More sharing options...
andibakker Posted May 27, 2010 Author Share Posted May 27, 2010 thanks for clearing that up ! Quote Link to comment https://forums.phpfreaks.com/topic/203073-htmlentities/#findComment-1064074 Share on other sites More sharing options...
Daniel0 Posted May 27, 2010 Share Posted May 27, 2010 Plus, you might also need the username in a non-HTML context. For instance if you send an email reminder. Quote Link to comment https://forums.phpfreaks.com/topic/203073-htmlentities/#findComment-1064141 Share on other sites More sharing options...
andibakker Posted May 27, 2010 Author Share Posted May 27, 2010 I've got another question related to this. I now have some data stored in the database with embedded html. <b>This is Bold</b> How do I get this to display as bold This is bold in a form. If I display it using htmentities($fieldname), it displays with the html tags. If I take out the htmlentities it displays as I would like to see it, but that is not secure ? Quote Link to comment https://forums.phpfreaks.com/topic/203073-htmlentities/#findComment-1064231 Share on other sites More sharing options...
Daniel0 Posted May 27, 2010 Share Posted May 27, 2010 http://www.google.com/search?q=wysiwyg+editor+javascript Quote Link to comment https://forums.phpfreaks.com/topic/203073-htmlentities/#findComment-1064244 Share on other sites More sharing options...
andibakker Posted May 27, 2010 Author Share Posted May 27, 2010 thanks - I'll look into that Quote Link to comment https://forums.phpfreaks.com/topic/203073-htmlentities/#findComment-1064252 Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.