W3cubDocs

/Drupal 8

function db_escape_field

db_escape_field($field)

Restricts a dynamic column or constraint name to safe characters.

Only keeps alphanumeric and underscores.

Parameters

string $field: The field name to escape.

Return value

string The escaped field name as a string.

Deprecated

as of Drupal 8.0.x, will be removed in Drupal 9.0.0. Instead, get a database connection injected into your service from the container and call escapeTable() on it. For example, $injected_database->escapeTable($table);

See also

\Drupal\Core\Database\Connection::escapeField()

Related topics

Database abstraction layer
Allow the use of different database servers using the same code base.

File

core/includes/database.inc, line 381
Core systems for the database layer.

Code

function db_escape_field($field) {
  return Database::getConnection()->escapeField($field);
}

© 2001–2016 by the original authors
Licensed under the GNU General Public License, version 2 and later.
Drupal is a registered trademark of Dries Buytaert.
https://api.drupal.org/api/drupal/core!includes!database.inc/function/db_escape_field/8.1.x