String Helpers

Trongate ships with a compact suite of pure PHP functions for everyday text-work. No configuration, no classes, no overhead - just reliable helpers you can call from any controller, model or view.

Available Functions

extract_content() - pull text between two markers
filter_name() - sanitize names and usernames
filter_str() - clean general text input
get_last_part() - return the final segment
make_rand_str() - generate cryptographically secure random strings
nice_price() - format numbers as prices
out() - escape output for HTML, JSON, JavaScript and XML
remove_html_code() - strip blocks of HTML by pattern
remove_substr_between() - remove text between markers
replace_html_tags() - convert HTML blocks based on rules
sanitize_filename() - clean filenames safely
truncate_str() - limit by characters
truncate_words() - limit by words
url_title() - generate URL - friendly slugs

Truncate Text

The truncate_str() function cuts by characters. The truncate_words() function cuts by words.

Get the Final Segment

The get_last_part() function returns the final portion of a string using a chosen delimiter.

Extract or Remove Text Between Markers

The extract_content() function finds the first matching pair of delimiters and returns what is inside.

The remove_substr_between() removes text between markers. You may remove a single match or all matches.

Prices

The nice_price() function formats numbers using commas, removes unnecessary decimals and optionally prepends a currency symbol.

Slugs and Safe Filenames

The url_title() function creates a URL - friendly slug. If the intl extension is loaded, it transliterates non-Latin characters.

The sanitize_filename() function cleans filenames, preserves extensions and handles international characters safely.

Safe Output

The out() function escapes strings for HTML, JSON, JavaScript, XML or attribute contexts. Always wrap untrusted content before sending it to the browser.

Security tip: If it came from a user, run it through out() before outputting it.

Random Strings

The make_rand_str() produces cryptographically secure random strings, avoiding confusing characters such as 0, O, 1 and l.

HTML Conversion Helpers

The replace_html_tags() function swaps one block of HTML tags for another, preserving the enclosed content.

The remove_html_code() function removes blocks of HTML entirely.

Filtering Input (Content Normalizing)

Trongate offers helper functions that help you normalize text or enforce formatting rules before storing data. These functions are not security filters and should not be used as a substitute for output escaping. Instead, they are useful when you want predictable, well-formed text in your database.

The filter_str() function removes disallowed HTML tags while preserving the ones you specify. This is useful for bios, descriptions and other user text where you want to allow some formatting but prevent unwanted code.

The filter_name() function is designed for usernames, screen names and full names. It strips tags and limits characters to a safe, readable subset, optionally allowing custom additional characters.