Display Formatted HTML Code From Session

Question

SunnySideUp 0 Light Poster

14 Years Ago

Hi,

I am using Tiny MCE as a Textbox to get user generated input which can be bold, italic, underlined, lists and different alignments.

When the user submits the form data the information is then saved to a variable like below:

$jobDesc = mysqli_real_escape_string ($dbc, $trimmed['txtJobProfile']);

The I take the input and put it into a session like below:

$_SESSION['jobProfile'] = $jobDesc;

I then call it on the next page but all I get is:

"\r"\n"\r"this is a test\r"\"n

Now what I want to do is to display the user input so that it displays as normal text,lists, and left alignmnets, so that there is no HTML showing, no \"r or \n.

So how do I go about formating the text ready to be displayed properly and also insert it into a database and then select and output it on other pages at different times ?

Thanks

html-css mysql php session

3 Contributors
9 Replies
200 Views
1 Day Discussion Span
Latest Post 14 Years Ago Latest Post by SunnySideUp

hielo 65 Veteran Poster

14 Years Ago

assuming you are NOT saving the value in $_SESSION['jobProfile'] to the DB (just using if to display on browser), then instead of: $_SESSION['jobProfile'] = $jobDesc; try: $_SESSION['jobProfile'] = nl2br($trimmed['txtJobProfile']);

theausum 8 Junior Poster in Training

14 Years Ago

also use htmlentities

theausum 8 Junior Poster in Training

14 Years Ago

probably you dont need htmlentities then

Reply to this topic

Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.

SunnySideUp 0 Light Poster · Answer 1 · 2010-10-17T22:11:21+00:00

Hi,

Thanks for your quick reply, I tried that and all I get is:

rn
This is a Test.

rn
rn
Once again nothing works
rn
rn
I need some help with this one

Thanks

SunnySideUp 0 Light Poster · Answer 2 · 2010-10-18T14:32:09+00:00

Hi,

I tried that as well but that didn't work either. Below is the kind of thing I am getting now:

&lt;p&gt;&lt;strong&gt;fvfvfvfvfvfvfv&lt;/strong&gt;cdknbkdnkvfnvkfnvk&lt;/p&gt;\r\n&lt;p&gt;dnkdnvkfnvkfnvkfnvkfvnfk&lt;/p&gt;\r\n&lt;p&gt;mlfmlvmflmvlfvmlfmvflmvlfmv&lt;/p&gt;\r\n&lt;p&gt

It does not seem to want to render my tinyMCE code, ie Bold, Lists, Enter, New line etc etc ??

Thanks

SunnySideUp 0 Light Poster · Answer 3 · 2010-10-18T15:00:02+00:00

Hi,

I take out HTMLEntities and all I get is this:

Welcome to flockjobs.com

\r\n
Welcome to 
\r\n
\r\n
this is hard shits
\r\n
need some help with this
\r\n
\r\n

I don't know whether its the actual TinyMCE textareas ?

Thanks

hielo 65 Veteran Poster · Answer 4 · 2010-10-18T22:20:41+00:00

ORIGINALLY you posted: $jobDesc = mysqli_real_escape_string ($dbc, $trimmed['txtJobProfile']); How are you populating/initializing the value of $trimmed?

theausum 8 Junior Poster in Training · Answer 5 · 2010-10-19T11:38:39+00:00

theausum 8 Junior Poster in Training

14 Years Ago

you seem to be confused yourself.

SunnySideUp 0 Light Poster · Answer 6 · 2010-10-19T13:02:22+00:00

Hi,

I am populating $trimmed with the following:

$trimmed = ('trim', $_POST);

But one thing I have noticed is that if I take out 'mysqli_real_escape_string' then it will work fine but I am worried about XSS attacks and SQL injection attacks as well as the fact I want to also call the information from a database at a later date as well.

Thanks.