'descr' => array(
'field' => 'descr',
'type' => 'text',
- 'filter' => FILTER_SANITIZE_MAGIC_QUOTES,
'use' => 'a'
),
'short_descr' => array (
'field' => 'short_descr',
'type' => 'text',
- 'use' => 'a'
+ 'use' => 'a'
),
// Address Line 1
'notes' => array (
'field' => 'notes',
'type' => 'text',
- 'filter' => FILTER_SANITIZE_MAGIC_QUOTES,
'use' => 'a'
)
-,cscott,Ubuntu-1404,13.03.2015 12:40,file:///home/cscott/.config/libreoffice/4;
\ No newline at end of file
+,cscott,Ubuntu-1404,23.03.2015 14:45,file:///home/cscott/.config/libreoffice/4;
\ No newline at end of file
$this->inputFieldStatus = true;
- // Set input filter or use specified filter - see PHP input_filter();
+ // If a filter has been specified, use that with the php filter_input() function.
$filter = FILTER_SANITIZE_STRING;
if (isset($f['filter'])) {
if (!is_numeric($f['filter'])) {
exit;
}
$filter = $f['filter'];
- }
- // Set input filter options or use specified filter options - see PHP input_filter();
- $filter_options = 0; //FILTER_FLAG_NO_ENCODE_QUOTES;
- if (isset($f['filter_options'])) {
- if (!is_numeric($f['filter_options'])) {
- echo "<P> </p><strong>ERROR:</strong> Supplied value for 'filter_options' is fields array not a defined filter option for PHP filter_input();";
- exit;
+ // Set input filter options or use specified filter options - see PHP input_filter();
+ $filter_options = 0; //FILTER_FLAG_NO_ENCODE_QUOTES;
+ if (isset($f['filter_options'])) {
+ if (!is_numeric($f['filter_options']) && !is_array($f['filter_options'])) {
+ echo "<P> </p><strong>ERROR:</strong> Supplied value for 'filter_options' is not valid;";
+ exit;
+ }
+ $filter_options = $f['filter_options'];
}
- $filter_options = $f['filter_options'];
+
+ $in = filter_input(INPUT_POST, $as, $filter, $filter_options);
+
+ // Otherwise, if no filter is specified, use the standard WordPress wp_kses_post() function to to the filtering - Requires slashes removed first.
+ } else {
+ $in = wp_kses_post(stripslashes($_POST[$as]));
}
- $in = filter_input(INPUT_POST, $as, $filter, $filter_options);
// Check for required field
if (isset($f['required']) && $f['required'] && trim($in) == '') {
// Setup to input a new member information record
case 'create':
- $MemberInfo = $this->newEntry();
+ $memberInfo = $this->newEntry();
break;
if ($haveMemberInfo) {
// Update the member Info data
- $MemberInfo = $this->updateEntry($memberInfoID);
+ $memberInfo = $this->updateEntry($memberInfoID);
break;
} else {
// Insert the new member info into the database
$this->memberName = $memberData['name'];
- $MemberInfo = $this->insertEntry();
- if ($MemberInfo['status']) {
+ $memberInfo = $this->insertEntry();
+ if ($memberInfo['status']) {
- $memberInfoID = $MemberInfo['fieldData']['id'];
+ $memberInfoID = $memberInfo['fieldData']['id'];
$haveMemberInfo = true;
// Also store member name for reference and sorting
// Clone the current member info
$memberInfoID = $CloneMemberInfo->cloneMemberInfo($memberInfoID);
- $MemberInfo = $this->editEntry($memberInfoID);
+ $memberInfo = $this->editEntry($memberInfoID);
// Default is to display the currently selected member information record in a form for updates
default:
// Edit the existing member
- $MemberInfo = $this->editEntry($memberInfoID);
+ $memberInfo = $this->editEntry($memberInfoID);
// If we have member data, say so
- if (is_array($MemberInfo) && $MemberInfo['status']) {
+ if (is_array($memberInfo) && $memberInfo['status']) {
$haveMemberInfo = true;
$this->wpdb->query($sql);
// Get updated member information for editing.
- $MemberInfo = $this->editEntry($memberInfoID);
+ $memberInfo = $this->editEntry($memberInfoID);
}
}
}
if (GLM_MEMBERS_PLUGIN_ADMIN_DEBUG_VERBOSE) {
- glmMembersAdmin::addNotice($MemberInfo, 'DataBlock', 'Member Data');
+ glmMembersAdmin::addNotice($memberInfo, 'DataBlock', 'Member Data');
}
// Compile template data
'member' => $memberData,
'haveMemberInfo' => $haveMemberInfo,
'memberInfoID' => $memberInfoID,
- 'memberInfo' => $MemberInfo,
+ 'memberInfo' => $memberInfo,
'haveCategories' => $haveCategories,
'categories' => $categories,
'categoryMemberInfo' => $categoryMemberInfo,
}
-
?>
<th {if $memberInfo.fieldRequired.descr}class="glm-required"{/if}>Description:</th>
<td {if $memberInfo.fieldFail.descr}class="glm-form-bad-input"{/if}>
{php}
- wp_editor('{$memberInfo.fieldData.descr}', 'glm_descr', array(
- 'media_buttons' => false,
- 'quicktags' => false,
+ wp_editor('{$memberInfo.fieldData.descr|escape:quotes}', 'glm_descr', array(
+ // 'media_buttons' => true,
+ // 'quicktags' => false,
'textarea_name' => 'descr',
'editor_height' => 200, // Height in px, overrides editor_rows
// 'textarea_rows' => 8
projects / WP-Plugins / glm-member-db.git / commitdiff