PHP: htmlspecialchars, but keep HTML entities

Question

I've been working on a small side project which formats Skype logs to make them look nice. This is going great, but I have hit a somewhat annoying bump in the road.

Here is a great (and somewhat obscene) example of what is going on. As you can see, htmlspecialchars() also converts HTML character codes into a string (because & becomes &). I was wondering if there was a way to allow HTML entities to still remain through htmlspecialchars?

Decode your HTML into text (i.e. `&` becomes `&`) and then escape it when printing. — Blender, Jun 12 '15 at 02:36
[`htmlspecialchars`](http://php.net/htmlspecialchars) already provides an option called `$double_encode` (among other flags) to avoid reencoding. — mario, Jun 12 '15 at 03:22

score 0 · Answer 1 · answered Jun 12 '15 at 03:37

0

You can use htmlentities() if it solve your problems, else store the string in one variable which returns from the functions and then while printing that string

$foo = str_replace("&amp;","&","$bar");

answered Jun 12 '15 at 03:37

Sarvagna Mehta

334
3
16

score 0 · Answer 2 · answered Jun 12 '15 at 04:08

Use this function:

$string=$_POST[pname];
function seoUrl($string) {
    //Lower case everything
    $string = strtolower($string);
    $string = str_replace('&',' ',$string);
    $string = preg_replace("/[^a-z0-9_\s-]/", "", $string);
    $string = preg_replace("/[\s-]+/", " ", $string);
    $string = preg_replace("/[\s_]/", "-", $string);
    return $string;
}
$sclean=seoUrl($string);

You can use str_replace('&',' ',$string); instead of & use what character you want remove...

PHP: htmlspecialchars, but keep HTML entities

2 Answers2