Connection::escapeField

public Connection::escapeField($field)

Escapes a field name string.

Force all field names to be strictly alphanumeric-plus-underscore. For some database drivers, it may also wrap the field name in database-specific escape characters.

Parameters

string $field: An unsanitized field name.

Return value

string The sanitized field name.

File

core/lib/Drupal/Core/Database/Connection.php, line 961

Class

Connection: Base Database API class.

Namespace

Drupal\Core\Database

Code

public function escapeField($field) {
  return preg_replace('/[^A-Za-z0-9_.]+/', '', $field);
}

Links:

https://api.drupal.org/api/drupal/core!lib!Drupal!Core!Database!Connection.php/function/Connection%3A%3AescapeField/8.2.x

doc_Drupal

2016-10-29 08:55:48

Comments

Popular Articles

Connection::escapeField public Connection::escapeField($field) Escapes a field name string. Force all field names to be strictly alphanumeric-plus-underscore. For some datab

SelectExtender::escapeField public SelectExtender::escapeField($string) Escapes a field name string. Force all field names to be strictly alphanumeric-plus-underscore. For some

Select::escapeField public Select::escapeField($string) Escapes a field name string. Force all field names to be strictly alphanumeric-plus-underscore. For some database

SelectInterface::escapeField public SelectInterface::escapeField($string) Escapes a field name string. Force all field names to be strictly alphanumeric-plus-underscore. For some

Connection::$connection The actual PDO connection. Type: \PDO File core/lib/Drupal/Core/Database/Connection.php, line 97 Class Connection Base Database API class. Nam