public function DatabaseConnection::escapeField
| 7.x database.inc | public DatabaseConnection::escapeField($field) |
Escapes a field name string.
Force all field names to be strictly alphanumeric-plus-underscore. For some database drivers, it may also wrap the field name in database-specific escape characters.
Return value
The sanitized field name string.
File
- drupal-7.x/
includes/ database/ database.inc, line 937 - Core systems for the database layer.
Class
- DatabaseConnection
- Base Database API class.
Code
public function escapeField($field) {
return preg_replace('/[^A-Za-z0-9_.]+/', '', $field);
}