/** * Sanitises for database input * * @param mixed $input * @return string */ public static function Db($input, $sanitise = true) { $output = ""; if (is_object($input)) { $input = (string) $input; } if (is_array($input)) { foreach ($input as $key => $value) { $input[$key] = self::Db($value, $sanitise); } $output = $input; } else { if ($sanitise) { // @todo pass connection to Db() as we need to use some form of escaping before inputting into the db. $input = Sanitise::poisonWords($input, self::DB); } $output = Sanitise::poisonWords($input); } return $output; }
/** * return an fbml youtube video string * * @param $url * @return string */ function embedYoutube($url) { $output = ""; $url = Sanitise::Html($url); if ($url) { $video = str_replace("watch?v=", "v/", $url); $output = sprintf("<fb:swf swfbgcolor='000000' imgstyle='border-width:3px; border-color:white;' swfsrc='%s&autoplay=1' imgsrc='%s' width='425' height='344'/>", $video, $video); } return $output; }