B4J Question % symbol in PostString variable causing problems

lledden

lledden

Member
Licensed User
Longtime User
I'm using B4J v6.3 with jOkHttpUtils2 V2.62. While testing special characters in variables used in a PostString I found that variables containing '%' followed by numbers appear to be converted into special (usually nondisplayable) characters when received by php code

For example
j.PostString("http://localhost:80/Remote/AddPersonMin.php","doctorid=" & SelectedDoctorID & "&firstname=" & PatFirst & "&lastname=" & PatLast & "&username=" & PatUser & "&userpassword=" & PatPswd )

where PatPswd = "%3636"

becomes $userpassword = "636" in the following php line

$userpassword = $_POST["userpassword"];

if PatPswd = "%2345 then $userpassword is displayed as 'box'345

I've tried single quotes, $_@ and other special characters and I don't see this behavior
 
Sort by date Sort by votes
DonManfred

DonManfred

Expert
Licensed User
Longtime User
Try
PHP: 
$userpassword = urldecode($_POST["userpassword"]);
http://php.net/urldecode

Edit: Sorry, no...
Are you using urldecode on the password maybe by mistake?
Maybe later in your code?
using urldecode the %23 is intepreted and replaced
 
Upvote 0
Daestrum

Daestrum

Expert
Licensed User
Longtime User
Have you tried replacing the % in the sent string with %25 before you send it? (%25 = % character)
 
Upvote 0
lledden

lledden

Member
Licensed User
Longtime User
Thanks for the responses. I don't use urldecode anywhere in any php code. I am using prepared statements and don't use any filtering or escape methods either. So it was a bit baffling. I can do a substitution, but I would like to understand why this is happening. Where is it getting converted. Erel said the string is sent as-is. The only command on the php side is to retrieve the POST variable... soo.. where is it getting changed and why?
 
Upvote 0
Erel

Erel

B4X founder
Staff member
Licensed User
Longtime User
You are using the application/x-www-form-urlencoded protocol.
In this protocol percentage has special meaning.

So the PHP method treats those characters as it should based on the protocol. BTW, how will your code work if the password includes a & sign?

The simplest solution is to base64 encode the password and decode it on the server.
 
Upvote 0
You must log in or register to reply here.

Similar Threads

aaronk
  • Question
B4J Question FCM Running Slow
Replies
13
Views
2K
Erel
Erel
P
  • Question
B4J Question [SOLVED]Http POST error on Background Worker
Replies
1
Views
766
Peter Lewis
P
Erel
  • Locked
  • Article
B4A Library [B4X] XUI Views - Cross platform views and dialogs
3 4 5
Replies
97
Views
193K
Erel
Erel
KMatle
  • Article
B4J Tutorial Easy upload files with httputils' original poststring to a php script with x parameters
Replies
3
Views
5K
KMatle
KMatle
Erel
  • Article
B4J Tutorial B4J Change Log (version history)
Replies
0
Views
262K
Erel
Erel
Top