add escaping routines for LIKE: db::escapeLike($s)

author Domas Mituzas <midom@users.mediawiki.org>

Tue, 9 Aug 2005 13:25:42 +0000 (13:25 +0000)

committer Domas Mituzas <midom@users.mediawiki.org>

Tue, 9 Aug 2005 13:25:42 +0000 (13:25 +0000)
author Domas Mituzas <midom@users.mediawiki.org>
Tue, 9 Aug 2005 13:25:42 +0000 (13:25 +0000)
committer Domas Mituzas <midom@users.mediawiki.org>
Tue, 9 Aug 2005 13:25:42 +0000 (13:25 +0000)
diff --git a/includes/Database.php b/includes/Database.php

index 8d1e37d..543d4ca 100644 (file)
--- a/includes/Database.php
+++ b/includes/Database.php
@@ -1128,6 +1128,15 @@ class Database {
                 }
         }
  
+       /**
+        * Escape string for safe LIKE usage
+        */
+       function escapeLike( $s ) {
+               $s=$this->strencode( $s );
+               $s=str_replace(array('%','_'),array('\%','\_'),$s);
+               return $s;
+       }
+               
         /**
          * Returns an appropriately quoted sequence value for inserting a new row.
          * MySQL has autoincrement fields, so this is just NULL. But the PostgreSQL
author	Domas Mituzas <midom@users.mediawiki.org>
	Tue, 9 Aug 2005 13:25:42 +0000 (13:25 +0000)
committer	Domas Mituzas <midom@users.mediawiki.org>
	Tue, 9 Aug 2005 13:25:42 +0000 (13:25 +0000)