PHP.nl

pg_escape_literal

pg_escape_literal

Escape a literal for insertion into a text field

string **pg_escape_literal** PgSql\Connection $connection string $data

escapes a literal for

querying the PostgreSQL database. It returns an escaped literal in the PostgreSQL format. adds quotes before and after data. Users should not add quotes. Use of this function is recommended instead of . If the type of the column is bytea, must be used instead. For escaping identifiers (e.g. table, field names), must be used. pg_escape_literal``pg_escape_literal``pg_escape_string``pg_escape_bytea``pg_escape_identifier

connection``data A containing text to be escaped. string

A containing the escaped data. string

Voorbeeld: example

<?php 
  // Connect to the database
  $dbconn = pg_connect('dbname=foo');
  
  // Read in a text file (containing apostrophes and backslashes)
  $data = file_get_contents('letter.txt');
  
  // Escape the text data
  $escaped = pg_escape_literal($data);
  
  // Insert it into the database. Note that no quotes around {$escaped}
  pg_query("INSERT INTO correspondence (name, data) VALUES ('My letter', {$escaped})");
?>

pg_escape_identifier``pg_escape_bytea``pg_escape_string

Vorige ← pg_escape_identifier Volgende pg_escape_string →

Documentatie