Using PHP how can i apply HTMLentities() to a backreference in a preg_replace() call?

Question

At the minute i have:

$Text = preg_replace("/\[code\](.*?)\[\/code\]/s", "<mytag>\\1</mytag>", $Text);

how can i escape the backreference using htmlentities()?

Answer 1

$Text = "foo [code]bla<br>bla[/code] foo";

echo preg_replace_callback('/\[code\](.*?)\[\/code\]/s', 'wrap_code', $Text);

function wrap_code($matches) { 
  return '<mytag>'.htmlspecialchars($matches[1]).'</mytag>';
}

As seen in the preg_replace_callback() documentation, you can also create the callback function inline, via create_function() or as of PHP 5.3.0 even use an anonymous function.

---

The generic approach however would be along the lines of this:

$Text = "foo [code]bla<br>bla[/code] foo";

$re_bbcode = '/\[(code|b|whatever)\](.*?)\[\/\1\]/s';
echo preg_replace_callback($re_bbcode, 'wrap_code', $Text);

function wrap_code($matches) { 
  switch ($matches[1]) {
    case 'code': $tag = 'mytag'; break;
    case 'b'   : $tag = 'b';     break;
    default    : $tag = ''; 
  }
  if ($tag != '')
    return "<$tag>".htmlspecialchars($matches[2])."</$tag>";
  else
    return htmlspecialchars($matches[0]);
}

Also I guess (I have not measured) that this regex could be a bit faster, because the reluctant quantifier would not be invoked more often than necessary:

\[(code|b|whatever)\]([^\[]+|.*?)\[\/\1\]

Answer 2

Use the /e flag:

$Text = preg_replace("/\[code\](.*?)\[\/code\]/es", "'<mytag>' . htmlentities(\\1) . '</mytag>'", $Text);