I am having a potential PHP/Javascript/HTML conflict going on in my
code that I simply can't resolve - been wracking my brain for a good
hour over this one and have come up with no good solution.
My resulting HTML tag MUST look like this:
quote:
<a href=index.php?section=person&action=delete_dept&i d=1
onClick="return isOKDelete('Are you sure you wish to delete Department
\"Phil\"?')">
Where
$deptName = 'Phil'
and
$section = 'person'
and
$action = 'delete_dept'
I can't figure out how to write my PHP code to ensure that that HTML
tag will look like the above example and work in a
dynamically-generated Javascript function, ALL at the very same time!
Help appreciated, this is a showstopper for my app!
Thanx
Phil
PS: I need this cross-posted in the hope of finding someone as equally
skilled in PHP as in Javascript to be able to come up with the best
idea for this as I can't. 13  1917 
Phil Powell wrote: I am having a potential PHP/Javascript/HTML conflict going on in my
code that I simply can't resolve - been wracking my brain for a good
hour over this one and have come up with no good solution.
My resulting HTML tag MUST look like this:
quote:
<a href=index.php?section=person&action=delete_dept&i d=1
onClick="return isOKDelete('Are you sure you wish to delete Department
\"Phil\"?')">
Easy:
<?php
echo '<a href=index.php?section=person&action=delete_dept&i d=1
onClick="return isOKDelete(\'Are you sure you wish to delete Department
\"Phil\"?\')">';
?>
just inserted a backslash before the single quotes you had there.
Where
Ah, it gets more complicated :)
$deptName = 'Phil'
and
$section = 'person'
and
$action = 'delete_dept'
I see
<?php
echo '<a href=index.php?section=', $section, '&action=', $action, '&id=1
onClick="return isOKDelete(\'Are you sure you wish to delete Department
\"', $deptName, '\"?\')">';
?>
Does this replacement of "values" with "', $variable, '" do the trick?
^_______________ stop quoting
___^^^^^^^^^____ print the value
______________^_ restart quoting
PS: I need this cross-posted in the hope of finding someone as equally
skilled in PHP as in Javascript to be able to come up with the best
idea for this as I can't.
Have no idea about the JavaScript you have there.
--
--= my mail box only accepts =--
--= Content-Type: text/plain =--
--= Size below 10001 bytes =--
Phil Powell wrote: I am having a potential PHP/Javascript/HTML conflict going on in my
code that I simply can't resolve - been wracking my brain for a good
hour over this one and have come up with no good solution.
My resulting HTML tag MUST look like this:
quote:
<a href=index.php?section=person&action=delete_dept&i d=1
onClick="return isOKDelete('Are you sure you wish to delete Department
\"Phil\"?')">
Where
$deptName = 'Phil'
and
$section = 'person'
and
$action = 'delete_dept'
I can't figure out how to write my PHP code to ensure that that HTML
tag will look like the above example and work in a
dynamically-generated Javascript function, ALL at the very same time!
Help appreciated, this is a showstopper for my app!
Thanx
Phil
PS: I need this cross-posted in the hope of finding someone as equally
skilled in PHP as in Javascript to be able to come up with the best
idea for this as I can't.
Phil,
You might want to try something like the following...
- Dan http://blog.dantripp.com/
Example:
================================================== ==========
<script type="text/javascript"><!--
function confirmDelete(deleteThis){
var result = confirm ('Are you sure you wish to delete Department
"'+deleteThis+'"?');
if (result) {
alert ('yes, you want to delete');
return true;
} else {
alert ('clicked it on accident, eh?');
return false;
}
}
--></script>
<?php
$section = "person";
$action = "delete_dept";
$id = "1";
$deptName = "Phil";
echo "<a
href=\"action.php?section=".$section."&action=".$a ction."&id=".$id."\"
onClick=\"return confirmDelete('".$deptName."');\">Delete
".$deptName."</a>";
?>
<br>
<br>
<a href="action.php?section=person&action=delete_dept &id=1"
onClick="return confirmDelete('Phil');">Delete Phil</a>
Phil Powell wrote: I am having a potential PHP/Javascript/HTML conflict going on in my
code that I simply can't resolve - been wracking my brain for a good
hour over this one and have come up with no good solution.
My resulting HTML tag MUST look like this:
quote:
<a href=index.php?section=person&action=delete_dept&i d=1
onClick="return isOKDelete('Are you sure you wish to delete Department
\"Phil\"?')">
Where
$deptName = 'Phil'
and
$section = 'person'
and
$action = 'delete_dept'
I can't figure out how to write my PHP code to ensure that that HTML
tag will look like the above example and work in a
dynamically-generated Javascript function, ALL at the very same time!
Help appreciated, this is a showstopper for my app!
Thanx
Phil
PS: I need this cross-posted in the hope of finding someone as equally
skilled in PHP as in Javascript to be able to come up with the best
idea for this as I can't.
<?php
$deptName = 'Phil';
$section = 'person';
$action = 'delete_dept';
?>
<a href="index.php?<?php echo $section; ?>=person&action=<?php echo
$action; ?>&id=1" onClick="return isOKDelete('Are you sure you wish to
delete Department \'<?php echo $deptName; ?>\'?')">Test</a>
Watch for line wrap. I changed the quotes around a little. The issue is
actually Javascript and its time to eat so I didn't piddle long. It
seems it didn't like the onclick="return someFunction(' \"\" ')" issue.
Changing it to \'\' let it work.
--
Randy
Chance Favors The Prepared Mind
comp.lang.javascript FAQ - http://jibbering.com/faq/
I noticed that Message-ID:
<tZ*******************@newssvr27.news.prodigy.co m> from Dan Tripp
contained the following: echo "<a
href=\"action.php?section=".$section."&action=".$ action."&id=".$id."\"
onClick=\"return confirmDelete('".$deptName."');\">Delete
".$deptName."</a>";
?>
<br>
<br>
<a href="action.php?section=person&action=delete_dept &id=1"
onClick="return confirmDelete('Phil');">Delete Phil</a>
If we are being picky the ampersands should be &
What happens for users without Javascript?
What happens if the page is spidered?
Hint: you won't like it...
--
Geoff Berrow (put thecat out to email)
It's only Usenet, no one dies.
My opinions, not the committee's, mine.
Simple RFDs http://www.ckdog.co.uk/rfdmaker/
Geoff Berrow wrote: If we are being picky the ampersands should be &
Good point.
What happens for users without Javascript?
Doesn't work, obviously.
What happens if the page is spidered?
Probably deltes a bunch of stuff.
Hint: you won't like it...
You're right, I merely answered the question and didn't bother to go
further into it. How 'bout posting an example of how to do this better?
Regards,
- Dan http://blog.dantripp.com/
Dan Tripp wrote: What happens for users without Javascript?
Doesn't work, obviously.
Rather, "Doesn't *work* as the OP intended it to." The JS obviously
won't be executed. In this case, the user simply isn't asked to verify
that they want to delete the selected record. Less functional, but
still *does* what it was intended to do.
I figured it was necessary to clarify before the next nitpicky poster
jumped in. What happens if the page is spidered?
Hint: you won't like it...
Upon reflection, I find it necessary to ask why you think that anyone
with any common sense would put an admin page out without any regard for
security? Meaning, why are you assuming that this delete page is
publicly readable, instead of behind some sort of page/directory
protection (.htaccess or whatnot)? If you put administrative pages out
for the world to see, you get what you deserve.
The spider argument is flat-out stupid. Might as well ask "what happens
if the web server has no power?" It's an equally big "gotcha."
- Dan http://blog.dantripp.com/
The Nordic One wrote: Oh, and BTW guys, I can't use "echo" anything because everything is
embedded in a class method in PHP that returns a String value.
Have the class return the string for the entire link (if possible) and
then echo it. The issue with the javascript error will still remain
though. For some reason, it doesn't like the escaped " inside the ".
When I changed it to 'name' instead of \"name\", it worked perfectly.
--
Randy
Chance Favors The Prepared Mind
comp.lang.javascript FAQ - http://jibbering.com/faq/
"Randy Webb" <hi************@aol.com> wrote in message
news:Ta********************@comcast.com...
<snip> For some reason, it doesn't like the escaped " inside the ".
When I changed it to 'name' instead of \"name\", it worked
perfectly.
That will be the HTML parser because the onclick attribute value is in
double quotes the first of the - \" - encountered will mark the end of
the attribute value for the HTML as javascript escapes are meaningless
in HTML. Probably a javascript hex escape would be better: \x22 == "
Richard.
Richard Cornford wrote: "Randy Webb" <hi************@aol.com> wrote in message
news:Ta********************@comcast.com...
<snip>
For some reason, it doesn't like the escaped " inside the ".
When I changed it to 'name' instead of \"name\", it worked
perfectly.
That will be the HTML parser because the onclick attribute value is in
double quotes the first of the - \" - encountered will mark the end of
the attribute value for the HTML as javascript escapes are meaningless
in HTML. Probably a javascript hex escape would be better: \x22 == "
I knew there was a reason, I just couldn't remember why. Thanks.
--
Randy
Chance Favors The Prepared Mind
comp.lang.javascript FAQ - http://jibbering.com/faq/
I noticed that Message-ID:
<B1*******************@newssvr25.news.prodigy.co m> from Dan Tripp
contained the following:
Upon reflection, I find it necessary to ask why you think that anyone
with any common sense would put an admin page out without any regard for
security? Meaning, why are you assuming that this delete page is
publicly readable, instead of behind some sort of page/directory
protection (.htaccess or whatnot)? If you put administrative pages out
for the world to see, you get what you deserve.
The spider argument is flat-out stupid. Might as well ask "what happens
if the web server has no power?" It's an equally big "gotcha."
I wouldn't go as far as that. There is nothing wrong with register
globals =on if coded properly. But like this code, it is an accident
waiting to happen. And I have read of cases where it has happened.
Not worth the risk.
The solution? Put the stuff in a form and make the delete mechanism an
image field or a button.
--
Geoff Berrow (put thecat out to email)
It's only Usenet, no one dies.
My opinions, not the committee's, mine.
Simple RFDs http://www.ckdog.co.uk/rfdmaker/
Phil Powell wrote: I am having a potential PHP/Javascript/HTML conflict going on in my
code that I simply can't resolve - been wracking my brain for a good
hour over this one and have come up with no good solution.
My resulting HTML tag MUST look like this:
quote:
<a href=index.php?section=person&action=delete_dept&i d=1
onClick="return isOKDelete('Are you sure you wish to delete Department
\"Phil\"?')">
Where
$deptName = 'Phil'
and
$section = 'person'
and
$action = 'delete_dept'
I can't figure out how to write my PHP code to ensure that that HTML
tag will look like the above example and work in a
dynamically-generated Javascript function, ALL at the very same time!
Help appreciated, this is a showstopper for my app!
Thanx
Phil
PS: I need this cross-posted in the hope of finding someone as equally
skilled in PHP as in Javascript to be able to come up with the best
idea for this as I can't.
I've not read the long list of posts the come forward with javascript
solutions, but I think its a PHP issue, and you should go to www.php.net
and look into
urldecode(), urlencode(), rawurlencode() and rawurldecode()
One of them is bound to get you there...
randelld
Reply Via Newsgroup wrote: Phil Powell wrote:
I am having a potential PHP/Javascript/HTML conflict going on in my
code that I simply can't resolve - been wracking my brain for a good
hour over this one and have come up with no good solution.
My resulting HTML tag MUST look like this:
quote:
<a href=index.php?section=person&action=delete_dept&i d=1
onClick="return isOKDelete('Are you sure you wish to delete Department
\"Phil\"?')">
Where
$deptName = 'Phil'
and
$section = 'person'
and
$action = 'delete_dept'
I can't figure out how to write my PHP code to ensure that that HTML
tag will look like the above example and work in a
dynamically-generated Javascript function, ALL at the very same time!
Help appreciated, this is a showstopper for my app!
Thanx
Phil
PS: I need this cross-posted in the hope of finding someone as equally
skilled in PHP as in Javascript to be able to come up with the best
idea for this as I can't.
I've not read the long list of posts the come forward with javascript
solutions, but I think its a PHP issue, and you should go to
www.php.net
and look into
urldecode(), urlencode(), rawurlencode() and rawurldecode()
One of them is bound to get you there...
The problem is not PHP related, its javascript related and has to do
with the quoting order and the only thing you can change in PHP to "fix"
that is to have it issue a different quote order.
--
Randy
Chance Favors The Prepared Mind
comp.lang.javascript FAQ - http://jibbering.com/faq/
Richard Cornford wrote: "Randy Webb" <hi************@aol.com> wrote in message
news:Ta********************@comcast.com...
<snip>For some reason, it doesn't like the escaped " inside the ".
When I changed it to 'name' instead of \"name\", it worked
perfectly.
That will be the HTML parser because the onclick attribute value is in
double quotes the first of the - \" - encountered will mark the end of
the attribute value for the HTML as javascript escapes are meaningless
in HTML. Probably a javascript hex escape would be better: \x22 == "
You could equally use ' as HTML attribute value delimiters and safely
escape the " within the JavaScript string delimited by ". But either
quote character may get you in trouble with the PHP parser, depending
on how the link is output by PHP.
PointedEars This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics | |
by: Hystou |
last post by:
There are some requirements for setting up RAID:
1. The motherboard and BIOS support RAID configuration.
2. The motherboard has 2 or more available SATA protocol SSD/HDD slots (including MSATA, M.2...
|
by: marktang |
last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However,...
|
by: Hystou |
last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can...
|
by: jinu1996 |
last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven...
|
by: Hystou |
last post by:
Overview:
Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows...
| | |
by: agi2029 |
last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing,...
|
by: isladogs |
last post by:
The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM).
In this session, we are pleased to welcome a new...
|
by: TSSRALBI |
last post by:
Hello
I'm a network technician in training and I need your help.
I am currently learning how to create and manage the different types of VPNs and I have a question about LAN-to-LAN VPNs.
The...
|
by: adsilva |
last post by:
A Windows Forms form does not have the event Unload, like VB6. What one acts like?
| |
