/** * Use this function for cleaning any variable * @author Howard <*****@*****.**> * @static * @param mixed $parameter * @return mixed */ public static function clean($parameter) { $return_data = ''; if (is_array($parameter)) { $return_data = array(); foreach ($parameter as $key => $value) { $return_data[$key] = wpl_global::clean($value); } } else { $return_data = strip_tags($parameter); } return wpl_db::escape($return_data); }
/** * Use this function for creating query * @author Howard <*****@*****.**> * @param array $vars * @param string $needle_str * @return string $query */ public static function create_query($vars = '', $needle_str = 'sf_') { if (!$vars) { $vars = array_merge(wpl_request::get('POST'), wpl_request::get('GET')); } /** clean vars **/ $vars = wpl_global::clean($vars); $query = ''; /** this is to include any customized and special form fields conditions **/ $path = WPL_ABSPATH . DS . 'libraries' . DS . 'create_query'; $path_exists = wpl_folder::exists($path); $find_files = array(); if ($path_exists) { $files = wpl_folder::files($path, '.php$'); } foreach ($vars as $key => $value) { /** escape value **/ $value = wpl_db::escape($value); if (strpos($key, $needle_str) === false) { continue; } $ex = explode('_', $key); $format = $ex[1]; $table_column = str_replace($needle_str . $format . '_', '', $key); $done_this = false; /** using detected files **/ if (isset($find_files[$format])) { include $path . DS . $find_files[$format]; continue; } foreach ($files as $file) { include $path . DS . $file; if ($done_this) { /** add to detected files **/ $find_files[$format] = $file; break; } } } return $query = trim($query, ' ,'); }
/** * get a variable * @author Howard <*****@*****.**> * @static * @param string $name * @param mixed $default * @param string $hash * @param boolean $clean * @return mixed */ public static function getVar($name, $default = null, $hash = 'default', $clean = false) { // Ensure hash and type are uppercase $hash = strtoupper($hash); if ($hash === 'METHOD') { $hash = strtoupper($_SERVER['REQUEST_METHOD']); } // Get the input hash switch ($hash) { case 'GET': $input =& $_GET; break; case 'POST': $input =& $_POST; break; case 'FILES': $input =& $_FILES; break; case 'COOKIE': $input =& $_COOKIE; break; case 'ENV': $input =& $_ENV; break; case 'SERVER': $input =& $_SERVER; break; default: $input =& $_REQUEST; $hash = 'REQUEST'; break; } $var = isset($input[$name]) ? $input[$name] : $default; /** clean **/ if ($clean) { $var = wpl_global::clean($var); } return $var; }
/** * for adding page number to listing pages * @author Howard <*****@*****.**> * @param string $title * @return string */ public function wp_title($title) { $wplview = wpl_request::getVar('wplview'); $wplpage = wpl_request::getVar('wplpage'); if (in_array($wplview, array('property_listing', 'profile_listing')) and $wplpage >= 2) { /** has HTML tag **/ if (strpos($title, '</') != false) { return $title; } return wpl_global::clean($title . ' -- ' . __('Page', WPL_TEXTDOMAIN) . ' ' . $wplpage); } return $title; }