我对PHP的经验非常有限,我真的希望有人能帮助我。
我想做的是对电话号码输入进行消毒/验证,以便只允许输入数字。
我想我需要使用FILTER_SANITIZE_NUMBER_INT
,但我不确定在哪里或如何使用它。
<?php
// Replace the email address with the one that should receive the contact form inquiries.
define('TO_EMAIL', '########');
$aErrors = array();
$aResults = array();
/* Functions */
function stripslashes_if_required($sContent) {
if(get_magic_quotes_gpc()) {
return stripslashes($sContent);
} else {
return $sContent;
}
}
function get_current_url_path() {
$sPageUrl = "http://".$_SERVER["SERVER_NAME"].$_SERVER["REQUEST_URI"];
$count = strlen(basename($sPageUrl));
$sPagePath = substr($sPageUrl,0, -$count);
return $sPagePath;
}
function output($aErrors = array(), $aResults = array()){ // Output JSON
$bFormSent = empty($aErrors) ? true : false;
$aCombinedData = array(
'bFormSent' => $bFormSent,
'aErrors' => $aErrors,
'aResults' => $aResults
);
header('Content-type: application/json');
echo json_encode($aCombinedData);
exit;
}
// Check supported version of PHP
if (version_compare(PHP_VERSION, '5.2.0', '<')) { // PHP 5.2 is required for the safety filters used in this script
$aErrors[] = 'Unsupported PHP version. <br /><em>Minimum requirement is 5.2.<br />Your version is '. PHP_VERSION .'.</em>';
output($aErrors);
}
if (!empty($_POST)) { // Form posted?
// Get a safe-sanitized version of the posted data
$sFromEmail = filter_input(INPUT_POST, 'email', FILTER_SANITIZE_EMAIL);
$sFromName = filter_input(INPUT_POST, 'name', FILTER_SANITIZE_STRING, FILTER_FLAG_STRIP_LOW);
$sMessage = "Name: ".stripslashes_if_required($_POST['name']);
$sMessage .= "'r'nEmail: ".stripslashes_if_required($_POST['email']);
$sMessage .= "'r'nBusiness: ".stripslashes_if_required($_POST['business']);
$sMessage .= "'r'nAddress: ".stripslashes_if_required($_POST['address']);
$sMessage .= "'r'nPhone: ".stripslashes_if_required($_POST['phone']);
$sMessage .= "'r'nMessage: ".stripslashes_if_required($_POST['message']);
$sMessage .= "'r'n--'r'nEmail sent from ". get_current_url_path();
$sHeaders = "From: '$sFromName' <$sFromEmail>"."'r'n";
$sHeaders .= "Reply-To: '$sFromName' <$sFromEmail>";
if (filter_var($sFromEmail, FILTER_VALIDATE_EMAIL)) { // Valid email format?
$bMailSent = mail(TO_EMAIL, "New inquiry from $sFromName", $sMessage, $sHeaders);
if ($bMailSent) {
$aResults[] = "Message sent, thank you!";
} else {
$aErrors[] = "Message not sent, please try again later.";
}
} else {
$aErrors[] = 'Invalid email address.';
}
} else { // Nothing posted
$aErrors[] = 'Empty data submited.';
}
output($aErrors, $aResults);
您看过PHP的preg_replace函数吗?您可以使用preg_replace('/[^0-9]/', '', $_POST['phone'])
去掉任何非数字字符。
一旦你过滤掉了字符数据,你总是可以检查它是否符合你想要的长度:
$phone = preg_replace('/[^0-9]/', '', $_POST['phone']);
if(strlen($phone) === 10) {
//Phone is 10 characters in length (###) ###-####
}
您也可以使用PHP的preg_match函数,如在另一个SO问题中所讨论的。
有几种方法可以做到这一点…例子:
// If you want to clean the variable so that only + - . and 0-9 can be in it you can:
$number = filter_var($number, FILTER_SANITIZE_NUMBER_INT);
// If you want to clean it up manually you can:
$phone = preg_replace('/[^0-9+-]/', '', $_POST['phone']);
// If you want to check the length of the phone number and that it's valid you can:
if(strlen($_POST['phone']) === 10) {
if (!preg_match('/^[0-9-+]$/',$var)) { // error } else { // good }
}
显然,可能需要根据国家和其他杂项因素进行一些编辑。
您可以尝试使用preg_replace过滤掉任何非数字字符,然后您可以检查剩余内容的长度,看看它是否是电话号码(应该是7,9或10位数字)
// remove anything thats not a number from the string
function only_numbers($number) { return preg_replace('/[^0-9]/', '', $number) };
// test that the string is only 9 numbers long
function isPhone($number) { return strlen(only_numbers($number)) == 9; }
只要确保在验证后使用only_numbers
值时使用它。
之