4.2.2 html
There is no translation yet for this section. Please help out and translate this.. More information about translations
html(string $string, boolean $remove = false)
This method prepares user-submitted data for display inside HTML. This is especially useful if you don't want users to be able to break your layouts or insert images or scripts inside of your HTML pages. If the $remove option is set to true, HTML content detected is removed rather than rendered as HTML entities.
$badString = '<font size="99" color="#FF0000">HEY</font><script>...</script>'; echo Sanitize::html($badString); // output: <font size="99" color="#FF0000">HEY</font><script>...</script> echo Sanitize::html($badString, true); // output: HEY...
$badString = '<font size="99" color="#FF0000">HEY</font><script>...</script>';echo Sanitize::html($badString);// output: <font size="99" color="#FF0000">HEY</font><script>...</script>echo Sanitize::html($badString, true);// output: HEY...
Powered by Cookbook © 2010 - 2012 Cake Software Foundation, Inc.
Original theme and concept by Emerson Lackey
