发誓字过滤器 - 从数据库输出

时间:2014-06-26 20:11:33

标签: php mysql

我有一个html表单,可以将名称注释保存到MySQL数据库中。然后,名称评论条目将以表格格式显示在php页面上。

我希望评论字段中的任何脏话在PHP输出表格中显示为三个星号

我按照以下方式开展工作:

swear.php 

<?php 
    $find = array("BadWord1","BadWord2","BadWord3"); //words I don't want displayed
    $replace = array("***","***","***"); //The replacements 
    ?>

process.php 

<?php
        //connect to the database 
        $dbc = mysqli_connect('host', 'username', 'password', 'db') or die('Error connecting to MySQL server.');

        //connect to swear.php
        require("swear filter.php");



        //process the form & email
        $name = mysqli_real_escape_string($dbc, trim($_POST['name']));
        $email = mysqli_real_escape_string($dbc, trim($_POST['email']));

        $comment= mysqli_real_escape_string($dbc, trim($_POST['comment']));
        $comment=str_replace($find, $replace, $comment);

        $from = 'From: whoever'; 
        $to = 'anemail@something.com'; 
        $subject = 'Hello';
        $human = mysqli_real_escape_string($dbc, $_POST['human']);

        $body = "From: $name\n E-Mail: $email\n Message:\n $comment";

        if(isset($_POST['submit'])){
            if ($name != '' && $email != '') {
                if ($human == '4') {                 
                    if (mail ($to, $subject, $body, $from)) {
                    echo '<h1 class=\"meantime\"></h1>';
                } else { 
                    echo '<h1 class=\"meantime\">Something went wrong, go back and try again!</h1>'; 
                } 
            } else if ($_POST['submit'] && $human != '4') {
                echo '<h1 class=\"incorrect\">You answered the anti-spam question incorrectly!</h1>';
            }
            } else {
                echo '<h1 class=\"required\">You need to fill in all required fields!!</h1>';
            }

        }
        ?>


        <?php
        //connect to the database 
        $dbc = mysqli_connect('host', 'username', 'password', 'db') or die('Error connecting to MySQL server.');

        //create the insert statement
        $query = "INSERT INTO table(name, email, comment, date) VALUES ('$name', '$email', '$comment', now())";

        //insert record into the table
        $result = mysqli_query($dbc, $query) or die ('Error querying database.');

        //close connection to database
        mysqli_close($dbc);

        //display thank you to user and link back to form page
        print "<br>";
        print "<h2 class=\"meantime\">Nice 1 <span class=\"nice\"> " .  stripslashes($name) .  "</span>.  I shall check it out.</h1>";
        print "<h3 class=\"meantime\">In the meantime, see what others have posted.</h3>";
        print "<br><br>";
        print "<h3 class=\"meantime\"><a href=\"comments.php\"><span class=\"underline\">Comments so far</span></a></h3>";
        print "<br><br>";
        ?>

是否有更有效的方法来完成 swear.php 文件。

  1. 我是否必须为每个替换坏词输入三个星号 - 因为它始终是相同的?

    2. 是否有更好的方法来实现简单的脏话过滤器?

    感谢任何帮助,Andy ;-)

1 个答案:

答案 0 :(得分:0)

我用12种语言收集了2200个坏词:en,ar,cs,da,de,eo,es,fa,fi,fr,hi,hu,it,ja,ko,nl,no,pl,pt, ru,sv,th,tlh,tr,zh。

可以使用MySQL转储,JSON,XML或CSV选项。

https://github.com/turalus/openDB

您可以检查注释是否包含此表中的单词,并使用PHP str_replace函数进行替换。

相关问题
最新问题