')=="") $aClean[$aKeys[$i]] = ""; break; default: // normal string (no HTML) $aClean[$aKeys[$i]] = trim(strip_tags($_REQUEST[$aKeys[$i]])); break; } break; case "a": // array if(!is_array($_REQUEST[$aKeys[$i]])) util_show_error_page_and_exit("Fatal error: ".$aKeys[$i]." should be an array."); break; default: // don't filter the AppDB session cookie and MAX_FILE_SIZE // and the DialogX values that xinha uses if($aKeys[$i]!="whq_appdb" && $aKeys[$i]!="MAX_FILE_SIZE" && $aKeys[$i]!="PHPSESSID" && strpos($aKeys[$i], "Dialog") == 0) { util_show_error_page_and_exit("Fatal error: type of variable ".$aKeys[$i]." is not recognized."); } break; } } /* null out all input data so we can be assured that */ /* no unfiltered values are being used */ $_REQUEST = array(); $_POST = array(); $_GET = array(); if(APPDB_DONT_CLEAR_COOKIES_VAR != "1") $_COOKIES = array(); } ?>