DatabaseConnection::escapeField
public function DatabaseConnection::escapeField
public DatabaseConnection::escapeField($field)
Escapes a field name string.
Force all field names to be strictly alphanumeric-plus-underscore. For some database drivers, it may also wrap the field name in database-specific escape characters.
Return value
The sanitized field name string.
File
- includes/database/database.inc, line 939
- Core systems for the database layer.
Class
- DatabaseConnection
- Base Database API class.
Code
public function escapeField($field) { return preg_replace('/[^A-Za-z0-9_.]+/', '', $field); }
© 2001–2016 by the original authors
Licensed under the GNU General Public License, version 2 and later.
Drupal is a registered trademark of Dries Buytaert.
https://api.drupal.org/api/drupal/includes!database!database.inc/function/DatabaseConnection::escapeField/7.x