News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Lorna Mitchell's Blog:
Stopping CodeIgniter from Escaping SQL
January 28, 2010 @ 13:39:45

In a project she's been working on Lorna Mitchell was frustrated with something the CodeIgniter framework does natively - escape SQL statements done through the databaase layer's "select()" method. Thankfully, there was a simple fix to turn this behavior off.

I've been getting increasingly impatient with its tendency to try to escape my SQL code for me - this is a really useful default feature but it seems to assume I don't know what I'm doing and so it puts backticks all over perfectly acceptable SQL code, very annoying!

Thanks to a reply on twitter from damiangostomski to her frustrations she found the optional second parameter you can give the "select()" method, a boolean that tells it whether or not to escape the query (it's mentioned here) for those that were wondering.

2 comments voice your opinion now!
codeigniter escape sql optional parameter


blog comments powered by Disqus

Similar Posts

CodeIgniter Blog: CodeIgniter Community Voice - Elliot Haughin

Lukas Smith\'s Blog: php|tek wrap up

Chris Shiflett\'s Blog: The addslashes() Versus mysql_real_escape_string() Debate

GoodPHPTutorials.com: SQL Injections in PHP with MySQL

NetTuts.com: Integrating Two-Factor Authentication with CodeIgniter


Community Events





Don't see your event here?
Let us know!


podcast testing release introduction language framework opinion refactor developer interview symfony2 configure code community series laravel threedevsandamaybe unittest install list

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework