Join Up! 104882 members and counting!

Login To PHPBuilder User Name: Password: Register A New Site Account * NOTE: This is for logging into the main site only! To login to the forums, click here

Linux Today Enterprise Linux Today Apache Today JustLinux.com Linux Planet PHPBuilder All Linux Devices Hiermenus DatabaseJournal Technology Jobs Covalent Extends Apache 2.0 to Microsoft ASP.NET ShopWorX - Support for Windows PHP Security Advisory: Vulnerability in PHP versions 4.2.0 and 4.2.1 Network Risk Assessment Full-Featured, Java-Based Apache GUI Reading RSS feeds in PHP: Part 1 Using XML: A PHP Developer's Primer, Part 2 BitMasks - Emulate Unix Permissions in PHP 10 Productivity-boosting Tools for Your PHP Development Open Source Databases: As the Tables Turn

php-db | 2001041

From: boclair (boclair <email protected>)
Date: 04/05/01

• Next message: Ron Brogden: "Re: [PHP-DB] Protecting files"
• Previous message: Mick Lloyd: "[PHP-DB] Protecting files"
• In reply to: Matt Williams: "RE: [PHP-DB] Forms : Validating user input is integer"
• Next in thread: Ben Udall: "Re: [PHP-DB] Forms : Validating user input is integer"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

----- Original Message -----
From: Matt Williams <matt <email protected>>
To: Boclair <boclair <email protected>>; <php-db <email protected>>
Sent: Thursday, April 05, 2001 11:28 PM
Subject: RE: [PHP-DB] Forms : Validating user input is integer

The line should read, and as I tested it,
> >
> > elseif (eregi("[a-zA-Z]",$num)) { }
> >
> > Do you see any problem with this?
>
> Yes, same thing it will accept other character like !*- etc...
>
> try
>
> if(!eregi("^[0-9]+[0-9]*$",$num)
>

> file://error
> }

You are right again. Stops all further processing of the inserted
variable if it is not entirely composed of digits.

It did not cross my mind to check for ! (shift 1) and similar entry
errors.

Once again, thanks.

Tim

So here is the final working script

<?
if ((@!$submit) || empty($num) )
     {
     echo "<div align='center'><span class='note'>No entry was
made</span></div>";
    include "get_id.php";
     }
if(!eregi("^[0-9]+[0-9]*$",$num))
     {
      echo "<div align='center'><span class='note'>The ID should have
been a number.</span></div>";
      include "get_id.php";
    }
else
    {
       include "do_form.php";
     }
?>

Tim

-- 
PHP Database Mailing List (http://www.php.net/)
To unsubscribe, e-mail: php-db-unsubscribe <email protected>
For additional commands, e-mail: php-db-help <email protected>
To contact the list administrators, e-mail: php-list-admin <email protected>

• Next message: Ron Brogden: "Re: [PHP-DB] Protecting files"
• Previous message: Mick Lloyd: "[PHP-DB] Protecting files"
• In reply to: Matt Williams: "RE: [PHP-DB] Forms : Validating user input is integer"
• Next in thread: Ben Udall: "Re: [PHP-DB] Forms : Validating user input is integer"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Columns / Articles | Tips / Quickies | News | News Linking and RSS Feeds | Shared Code Library Mail Archives | Support / Discussion Forums | Get Started! Links | Contribute! | Docs