stkvtflw
Reputation: 13507
js: Escape special characters
Webapp has, say, comments form.
If user is inputting something like:
"Comment about 'topic" (single quote is not closed)
This brakes node-postgres queries.
What is the simplest way to escape/comment-out/convert-to-unicode all the special characters? But at the same time, make it easy to render on the page after all.
For example, backslash would successfully comment-out the single quote. But i'm sure, there are much more special characters, which could break the pg queries. Is there some commonly used script/module to make strings safe?
Upvotes: 0
Views: 746
Answers (1)
stkvtflw
Reputation: 13507
node-postgres has such method already:
https://github.com/brianc/node-postgres/wiki/Prepared-Statements
Upvotes: 1
Related Questions
- Generate random string/characters in JavaScript
- Can I escape HTML special chars in JavaScript?
- Regex for password must contain at least eight characters, at least one number and both lower and uppercase letters and special characters
- How do I escape a single quote in SQL Server?
- How to detect escape key press?
- How can I get last characters of a string
- When are you supposed to use escape instead of encodeURI / encodeURIComponent?
- Strip all non-numeric characters from string in JavaScript