sanitize_meta() WordPress Function

The sanitize_meta() function is a built-in WordPress function that allows you to safely sanitize data before adding it as a custom field. This function is especially useful when you are accepting data from users, such as when using a contact form. The sanitize_meta() function will ensure that only safe data is stored in your custom fields.

sanitize_meta( string $meta_key, mixed $meta_value, string $object_type, string $object_subtype = '' ) #

Sanitizes meta value.

Contents

Parameters

$meta_key

(string)(Required)Metadata key.

$meta_value

(mixed)(Required)Metadata value to sanitize.

$object_type

(string)(Required)Type of object metadata is for. Accepts 'post', 'comment', 'term', 'user', or any other object type with an associated meta table.

$object_subtype

(string)(Optional) The subtype of the object type.

Default value: ''

Top ↑

Return

(mixed) Sanitized $meta_value.

Top ↑

More Information

  • This function applies filters that can be hooked to perform specific sanitization procedures for the particular metadata type and key. Does not sanitize anything on its own. Custom filters must be hooked in to do the work. The filter hook tag has the form “sanitize_{$meta_type}_meta_{$meta_key}“.
  • This function is called by add_metadata() and update_metadata() WordPress functions.

Top ↑

Source

File: wp-includes/meta.php

function sanitize_meta( $meta_key, $meta_value, $object_type, $object_subtype = '' ) {
	if ( ! empty( $object_subtype ) && has_filter( "sanitize_{$object_type}_meta_{$meta_key}_for_{$object_subtype}" ) ) {

		/**
		 * Filters the sanitization of a specific meta key of a specific meta type and subtype.
		 *
		 * The dynamic portions of the hook name, `$object_type`, `$meta_key`,
		 * and `$object_subtype`, refer to the metadata object type (comment, post, term, or user),
		 * the meta key value, and the object subtype respectively.
		 *
		 * @since 4.9.8
		 *
		 * @param mixed  $meta_value     Metadata value to sanitize.
		 * @param string $meta_key       Metadata key.
		 * @param string $object_type    Type of object metadata is for. Accepts 'post', 'comment', 'term', 'user',
		 *                               or any other object type with an associated meta table.
		 * @param string $object_subtype Object subtype.
		 */
		return apply_filters( "sanitize_{$object_type}_meta_{$meta_key}_for_{$object_subtype}", $meta_value, $meta_key, $object_type, $object_subtype );
	}

	/**
	 * Filters the sanitization of a specific meta key of a specific meta type.
	 *
	 * The dynamic portions of the hook name, `$meta_type`, and `$meta_key`,
	 * refer to the metadata object type (comment, post, term, or user) and the meta
	 * key value, respectively.
	 *
	 * @since 3.3.0
	 *
	 * @param mixed  $meta_value  Metadata value to sanitize.
	 * @param string $meta_key    Metadata key.
	 * @param string $object_type Type of object metadata is for. Accepts 'post', 'comment', 'term', 'user',
	 *                            or any other object type with an associated meta table.
	 */
	return apply_filters( "sanitize_{$object_type}_meta_{$meta_key}", $meta_value, $meta_key, $object_type );
}

Expand full source codeCollapse full source codeView on TracView on GitHub

Top ↑

Top ↑

Uses

Uses
UsesDescription
wp-includes/meta.php:sanitize_{$object_type}_meta_{$meta_key}_for_{$object_subtype}

Filters the sanitization of a specific meta key of a specific meta type and subtype.

wp-includes/meta.php:sanitize_{$object_type}_meta_{$meta_key}

Filters the sanitization of a specific meta key of a specific meta type.

wp-includes/plugin.php:has_filter()

Checks if any filter has been registered for a hook.

wp-includes/plugin.php:apply_filters()

Calls the callback functions that have been added to a filter hook.

Top ↑

Used By

Used By
Used ByDescription
wp-includes/rest-api/fields/class-wp-rest-meta-fields.php:WP_REST_Meta_Fields::is_meta_value_same_as_stored_value()

Checks if the user provided value is equivalent to a stored value for the given meta key.

wp-includes/meta.php:update_metadata_by_mid()

Updates metadata by meta ID.

wp-includes/meta.php:add_metadata()

Adds metadata for the specified object.

wp-includes/meta.php:update_metadata()

Updates metadata for the specified object. If no value already exists for the specified object ID and metadata key, the metadata will be added.

Top ↑

Changelog

Changelog
VersionDescription
4.9.8The $object_subtype parameter was added.
3.1.3Introduced.
Download the latest version of WordPress from https://wordpress.org/

The content displayed on this page has been created in part by processing WordPress source code files which are made available under the GPLv2 (or a later version) license by theĀ Free Software Foundation. In addition to this, the content includes user-written examples and information. All material is subject to review and curation by the WPPaste.com community.