[Resolved] pagination - not the same old question...

Pig

I'm feeling a little dense at the moment, but I can't see a better solution.

I know how to set up pagination for a page where the query is always the same, but now I need to use a page where the query variable. I found several examples but they all showed the query itself being passed in the query string. Doesn't that create a huge security risk? Won't htmlspecialchars() break the query if I use it on the whole thing?

I was going to set it up so I could pass JUST the parameters of the query, and purge them. Is this the best way? Am I missing something?

Thanks

stolzyboy

Originally posted by Pig
I was going to set it up so I could pass JUST the parameters of the query, and purge them. Is this the best way? Am I missing something?
Thanks

I think this route would be the best, having the query string built on the next page with variables and send those as parameters(like you said), and put them in the query string

I think you have the idea and you had the idea right in the first place

i would also name them something that wouldn't make sense so peeps could guess what they could put in there

Pig

I thought that was the way, but I saw examples of passing the query itself and figured I must be missing something.

stolzyboy

there are a lot of peeps that will send the whole query through the query string, but what a silly idea, that is like saying come in and piss with my whole database

FrozNic

hey pig (lol that sounds offensive) or stolzyboy,

weird question, but, um, what is pagination? i feel like i should know... i'm wondering if i do know, i've just never heard of it? can u give me a quick expl of it? thx

Pig

go to: previous 1, 2, 3 next

FrozNic

yah, i kinda thought that might be it... didn't know there was a word for it lol thx