lib_sanitize

PHP input filtering library

MIT License

Stars
21
View Code on GitHub
Ecosystems: PHP

lib_sanitize

A PHP input sanitizing library.

USAGE

<?php
	include('lib_sanitize.php');

	# in essence
	$clean = sanitize($dirty, $type[, $default_value = null]);

	# various formats
	$a = sanitize($input, 'str');		# UTF-8 string
	$b = sanitize($input, 'str_multi');	# UTF-8 string allowing newlines
	$c = sanitize($input, 'int32'); 	# PHP's native int type
	$d = sanitize($input, 'int64'); 	# A 64bit number as a string
	$e = sanitize($input, 'html');		# HTML filtered by lib_filter
	$f = sanitize($input, 'bool');		# A boolean
	$g = sanitize($input, 'isset');		# True is the input was set
	$h = sanitize($input, 'rx', null, $rx);	# Returns input it matches $rx (a preg regex)
	$i = sanitize($input, 'in', null, $in);	# Returns input if it exists in array $in

	# GET & POST variables
	$a = get_bool('key_name');		# $_GET
	$b = post_int32('key_name');		# $_POST
	$c = request_str_multi('key_name');	# $_REQUEST

	# just care about strings?
	$a = sanitize_string($input, $allow_newlines);



	# the default mode - strip out bad UTF-8
	$GLOBALS['sanitize_mode'] = SANITIZE_INVALID_STRIP;

	# alternative mode - if the input isn't valid UTF-8, convert from anothr character set
	$GLOBALS['sanitize_mode'] = SANITIZE_INVALID_CONVERT;
	$GLOBALS['sanitize_convert_from'] = 'ISO-8859-1'; # Latin-1

	# alternative mode - if the input isn't valid UTF-8, throw an exception
	$GLOBALS['sanitize_mode'] = SANITIZE_INVALID_THROW;



	# if you know your input encoding, set it first (all input is converted to UTF-8)
	$GLOBALS['sanitize_input_encoding'] = 'SJIS'; # Shift-JIS



	# if you don't have mbstring, you can use iconv instead
	$GLOBALS['sanitize_extension'] = SANITIZE_EXTENSION_ICONV;

	# if you don't have iconv either, you can use pure php
	$GLOBALS['sanitize_extension'] = SANITIZE_EXTENSION_PHP;

	# iconv is the fastest, but supports less encodings and is broken on some platforms.
	# mbstring (the default) is still very fast and supports many encodings.
	# pure php mode only supports UTF-8 and ISO-8859-1 (Latin-1) and is very slow.



	# by default, the string filter will remove all 'unassigned' (property: Cn) unicode
	# characters. you may need to disable this if your PCRE library does not support
	# unicode properties (--enable-unicode-properties compilation flag)
	$GLOBALS['sanitize_strip_reserved'] = false;

?>

CREDITS

By Cal Henderson [email protected]

Related Projects
kirby3-htmlpurifier

Static class method, Uniform-Guard and Field-Method to filter your "dirty" HTML inputs to "clean"...

09 Mar 2020 3
lib_filter

PHP HTML filtering library

04 Jun 2010 13
sanitizer

Sanitize your objects with attributes

30 Jun 2023 8
php-library-template

Template for php libraries

23 Jun 2019 2
php-validate

Lightweight and feature-rich PHP validation and filtering library. Support scene grouping, pre-fi...

05 Apr 2016 256
laravel-sanitize

Laravel package to sanatize a string for use as URL's. It uses the PHP Normalizer class and fills...

31 Oct 2013 7
ci-minify

Minify css and js files in CodeIgniter

06 Jan 2011 175
tempa-php

Template file parsing library

30 Dec 2016 2
lib_oauth

Very simple PHP4 OAuth library

03 Jun 2010 18
assert

Thin assertion library for use in libraries and business-model

20 May 2012 2,386
Laravel-Binput

An input protector for Laravel

13 Aug 2013 172
clean

A clean (as in simple) data cleaner (as in validation tool)

26 Dec 2015 2
PhpSanitization

Simple PHP sanitization class used to verify and clean values to assure they are valid and secure

09 Jan 2021 17
rfc822

PHP email address validator based on RFCs 822, 2822, 5322 & more

04 Jun 2010 82
nijikodo

Code syntax highlighting library written in PHP.

19 Jul 2010 29