PHPDeveloper.org: Mattias Geniar's Blog: Input Validation: Using filter_var() Over Regular Expressions

	News Feed
	Jobs Feed

Sections

Tutorials

Books

Events

Talks

Jobs

Recent Jobs

PHPMaster.com: Zend Job Queue

Rob Diana's Blog: Web And Scripting Programming Language Job Trends - August 2011

Job Posting: Options Consulting Solutions Seeks PHP Developer Team Lead (Toronto, Canada)

Job Posting: FireScope Seeks Experienced Web Application Developer/Manager (Dallas, TX)

Kevin Schroeder's Blog: Added (PHP 5.3) job queuing to my WordPress instance

Job Posting: Jacob Group (Recruiter) Seeks Director of Software Development (Lacrosse, WI)

Job Posting: Skillshare Seeks Senior Frontend Engineer (New York, NY)

Job Posting: SoftLayer Seeks Software Engineer - Interface Development (Dallas, Tx)

Job Posting: Company Confidential Seeks Senior PHP Developer (Montreal, Quebec, Canada)

Job Posting: SoftLayer Seeks Software Engineer - Systems Development (Dallas, Tx)

News Archive

Developer Drive: Building a PHP Ad Tracker: Data Object Design and Coding

Refulz.com: CakePHP evolves to 2.0

Ed Finkler's Blog: The MicroPHP Follow-up FAQ

Rob Allen's Blog: One-to-Many Joins with Zend_Db_Table_Select

Gonzalo Ayuso's Blog: How to protect from SQL Injection with PHP

Community News: Latest Releases from PHPClasses.org

Kurt Payne's Blog: User register_tick_function to profile your code

Chris Hartjes' Blog: How Not to Suck at PHP

PHPMaster.com: Under the Hood of Yii's Component Architecture, Part 2

NetTuts.com: Turbocharge your Website with Memcached

Mattias Geniar's Blog:
Input Validation Using filter_var() Over Regular Expressions

by Chris Cornutt February 11, 2009 @ 07:55:30

This recent post to Mattias Geniar's blog takes a look at an alternative to trying to catch every single thing that could be filtered on user input with a regular expression - the filter_var function.

Just about the biggest time-sink on any project, is the amount of input validation that needs to be done. You _have_ to assume your visitor is a maniac serial killer, out to destroy your application. And you have to prevent it. [...] Thus starts our never-ending battle for user input validation. We can't allow it all so we check every value presented to us. But using PHP's filter_var function, this can be made 100x easier!

He includes the long list of filtering types that the function has to offer including sanitizing strings, working with special characters and validating input like email addresses, URLs and IP addresses.

0 comments voice your opinion now!
filtervar regular expressions input validation sanitize

Community Events

Don't see your event here?
Let us know!

All content copyright, 2012 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework