What are some best practices for allowing users to choose email recipients through a drop-down menu in a PHP form?

When allowing users to choose email recipients through a drop-down menu in a PHP form, it is important to properly sanitize and validate the user input to prevent any security vulnerabilities such as SQL injection or cross-site scripting attacks. One way to achieve this is by using PHP's filter_var function to sanitize the input and only allowing predefined values in the drop-down menu options.

// Example PHP code snippet for allowing users to choose email recipients through a drop-down menu

// Define an array of predefined email recipients
$emailRecipients = array(
    &quot;recipient1@example.com&quot; =&gt; &quot;Recipient 1&quot;,
    &quot;recipient2@example.com&quot; =&gt; &quot;Recipient 2&quot;,
    &quot;recipient3@example.com&quot; =&gt; &quot;Recipient 3&quot;
);

// Validate and sanitize the user input
if(isset($_POST[&#039;recipient&#039;]) &amp;&amp; array_key_exists($_POST[&#039;recipient&#039;], $emailRecipients)) {
    $selectedRecipient = filter_var($_POST[&#039;recipient&#039;], FILTER_SANITIZE_EMAIL);
    // Use $selectedRecipient as the email recipient in your email sending function
} else {
    // Handle invalid input error
    echo &quot;Invalid recipient selected&quot;;
}

// HTML form with drop-down menu for selecting email recipients
echo &quot;&lt;form method=&#039;post&#039;&gt;&quot;;
echo &quot;&lt;select name=&#039;recipient&#039;&gt;&quot;;
foreach($emailRecipients as $email =&gt; $name) {
    echo &quot;&lt;option value=&#039;$email&#039;&gt;$name&lt;/option&gt;&quot;;
}
echo &quot;&lt;/select&gt;&quot;;
echo &quot;&lt;input type=&#039;submit&#039; value=&#039;Send Email&#039;&gt;&quot;;
echo &quot;&lt;/form&gt;&quot;;

Keywords

PHP drop-down menu form email recipients user input

What are some best practices for allowing users to choose email recipients through a drop-down menu in a PHP form?

Keywords

Related Questions