How can one ensure proper data validation and sanitization when working with JSON in PHP?

To ensure proper data validation and sanitization when working with JSON in PHP, one can use functions like json_decode() to validate the incoming JSON data and filter_var() or htmlentities() to sanitize the data before using it in the application.

// Validate and sanitize JSON data
$jsonData = &#039;{&quot;name&quot;: &quot;&lt;script&gt;alert(\&#039;XSS Attack\&#039;)&lt;/script&gt;&quot;, &quot;age&quot;: 25}&#039;;
$decodedData = json_decode($jsonData, true);

if ($decodedData !== null) {
    $name = filter_var($decodedData[&#039;name&#039;], FILTER_SANITIZE_STRING);
    $age = filter_var($decodedData[&#039;age&#039;], FILTER_SANITIZE_NUMBER_INT);

    // Use the sanitized data in the application
    echo &quot;Name: &quot; . $name . &quot;&lt;br&gt;&quot;;
    echo &quot;Age: &quot; . $age;
} else {
    echo &quot;Invalid JSON data&quot;;
}

Keywords

JSON data validation sanitization PHP functions security

How can one ensure proper data validation and sanitization when working with JSON in PHP?

Keywords

Related Questions