mysql_real_esc_str expecting string

Question

JoKat 0 Newbie Poster

15 Years Ago

hi,

i am a novice and have recently started practicing some php tutorials. there is this bit of code that involves HTTP authentication which makes sense up until this part:

// connect to database
$dbc = mysql_connect(DB_HOST, DB_USER, DB_PASSWORD, DB_NAME);

// grab the user entered log-in data
$user_username = mysql_real_escape_string($dbc, trim($_SERVER['PHP_AUTH_USER']));
$user_password = mysql_real_escape_string($dbc, trim($_SERVER['PHP_AUTH_PW']));
$data = mysql_query($dbc, $query);

The error reporting indicates that mysql_real_escape_string expects a string as parameter 1. I believe $dbc is currently functioning as an array? Is this acceptable or do I need to change something to get this bit of code to function?

The code came directly from a published PHP + MYSQL book. Let me know if there is any way in which I can add context.

mysql php

4 Contributors
3 Replies
99 Views
9 Hours Discussion Span
Latest Post 15 Years Ago Latest Post by BzzBee

somedude3488 228 Nearly a Posting Virtuoso

15 Years Ago

reverse the order. the string you want to escape goes first, then the database connection.

Reply to this topic

Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.

LoveSquid 0 Newbie Poster · Answer 1 · 2009-04-21T08:17:48+00:00

Check this section: http://www.php.net/manual/en/function.mysql-real-escape-string.php

Hopefully someone more skilled can actually help you.

BzzBee 5 Posting Whiz · Answer 2 · 2009-04-21T10:06:10+00:00

BzzBee 5 Posting Whiz

15 Years Ago

yes you should reverse the order