Sanitizing random data type

96 Views Asked by gprusiiski At 04 April 2025 at 01:41

i have a problem with sanitizing data.

Is there a built in php function to sanitize data like htmlspecialchars/htmlenteties, which if provided a non string value it keeps its original type. Example:

The problem:
    $a = 1;//(int);
    $b = htmlspecialchars($a);
    var_dump($b); // string "1"
The desired effect:
    $a = 1;//(int);
    $b = htmlspecialchars($a);
    var_dump($b); // integer"1"

Thanks for the time.

Original Q&A

There are 3 best solutions below

Drumbeg On 11 December 2013 at 12:25 BEST ANSWER

$a = 1;//(int);
$b = htmlspecialchars($a);
settype($b,gettype($a));
var_dump($b); // integer"1"

Results in

int(1)

Ronald Swets On 11 December 2013 at 12:31

You can check by type first, then use a htmlspecialchars and then cast to the type... although that would defy the use of htmlspecial chars. Also, i think the $a will probably come from some request variable, which will always be a string in that case.

It almost sounds as if you would like a function to determine the context for you. Since if it is already typed int, what 'escaping' do you want to do?

AudioBubble On 11 December 2013 at 12:33

There is no need to use htmlspecialchars on an integer value.

I just get the type, and do something like i show in the code below, even you can settype again later.

$var_type = gettype($var);

switch ($var_type)
{
    case 'integer':
         break;
    case 'string':
         $var = htmlspecialchars($var);
}

return $var;

Sanitizing random data type

There are 3 best solutions below

Related Questions in PHP

Related Questions in XSS

Related Questions in SANITIZATION

Trending Questions

Popular # Hahtags

Popular Questions