what would be better way to remove any html related character from a form input

[hakimserwa]

htmlentities but i have tested it numerously but if it failed a simple <br /> then i would really like to look somewhere else.

 

please help if there is just a way of not even passing them but just triger an error if one is found.

[jcbones]

To remove them?  strip_tags.

 

[hakimserwa]

thank will try this

[hakimserwa]

strip_tags() doesnt strip <br/> also please advise on better way to keep html or any related tags from my form inputs.

[xyph]

Do you want to strip them, or cause them to display as text?

 

<?php

$string = '<br />';

echo $string;

echo "\n";

echo htmlentities($string);

?>

 

output

 

<br />
<br />

 

Works fine for me. Keep in mind, htmlentities and htmlspecialchars should be given an encoding value, if needed.

 

Please specify how you're using these functions.

 

<?php

$string = '<br/>';

echo strip_tags($string);

?>

 

Produces no output for me, so you probably aren't implementing it correctly.

[hakimserwa]

i use them during validation.

if(!trim(strip_tags($first_name))){

 

[xyph]

You're using it incorrectly. The manual, and my examples, shows you what kind of values you should expect the function to return.

[hakimserwa]

got it thank you very much