I studied the documentation, it seems to show it both ways (i.e. mysqli, and the connection variable).
Code: Select all
$theValue = mysqli_real_escape_string($atlas, $theValue);It may turn out I don't need the statement at all. If I understand the readings, this is used mostly for user input (partly for security and partly just to let them no worry too much about special characters they may use. I'm the user so don't use a bunch of specials for some db text fields.
I ran across this post while researching. I haven't gone through it in detail yet, but my first past says it is a different approach with using mySQLi.
http://stackoverflow.com/questions/2173 ... -string-gi
Why am I getting the error and should I follow a completely different approach to making sure text input is not ambiguous?