mysql - PHP - Beginning Prepared Statements but they seem unwieldy -


i've got website connect mysql database make number of queries, in usual fashion. i'm not doing more complicated than:

$result = mysql_query('select * table condition = "'.mysql_real_escape_string($_post['condition']).'"'); $row = mysql_fetch_assoc($result); echo $row['var1'].' '.$row['var2'];

and works. i've been reading prepared statements , seem offer more security , i'd use them , replace database calls prepared statements, i've been looking @ mysqli class.

but seem more code achieve same thing. understand i'd have above:

$stmt = $db->stmt_init(); if($stmt->prepare('select * table condition = ?')) { $condition = $_post['condition']; $stmt->bind_param('s', $condition); $stmt->execute();  $stmt->bind_result($var1, $var2, ...); if ($stmt->fetch()) {     echo $var1 . ' - ' . $var2; } }

so seems hell of lot more code, , bit harder manage. misunderstanding how use these or there shorter way of doing "normal" php things:

  • populating $row, being array representing 1 single line database.
  • looping on rows, , refilling $row "next row" along.
  • normal update enquiries.

the above nice , quick "normally" seem take many more lines using prepared statements.

a common way wrap database functionality class. here's simple 1 implementing caching of prepared statements:

class db {   protected $db;   protected $cache;    public function __construct($host, $database, $user, $pass, $charset = 'utf8') {     $this->db = new pdo(sprintf('mysql:dbname=%s;host=%s', $database, $host, $charset),                         $user, $pass);     $this->cache = array();     $this->db->query(sprintf('set names %s', $charset));   }    public function query($query, $vars = array()) {     //you may input simple value, no need arrays single argument                                   if (!is_array($vars))       $vars = array($vars);      //short names inside function                                                                           $db = &$this->db;     $cache = &$this->cache;      //ensure prepared statement in cache                                                                 if (!isset($cache[$query]))       $cache[$query] = $db->prepare($query);      //execute statement , return rows                                                                 $stmt = $cache[$query];     if ($stmt->execute($vars))       return $stmt->fetchall();     else       return false;   } }

usage of close older database interfaces. example:

$db = new db(host, database, user, pass); $result = $db->query('select id, name table id = ? , address = ?',                      array(42, 'home')); foreach ($result $row) {   ... }

Comments

Post a Comment

Popular posts from this blog

java - Play! framework 2.0: How to display multiple image? -

i need display gallery of photos. here template: @(photos: list[photo]) @title = { <bold>gallery</bold> } @main(title,"photo"){ <ul class="thumbnails"> @for(photo <- photos) { <li class="span3"> <a href="#" class="thumbnail"> <img src="@photo.path" alt=""> </a> </li> } </ul> } and here controller method: public static result getphotos() { return ok(views.html.photo.gallery.render(photo.get())); } and here photo bean : @entity public class photo extends model { @id public long id; @required public string label; public string path; public photo(string path, string label) { this.path = path; this.label = label; } private static finder<long, photo> find = new finder<long, photo>( long.class, photo.class); public static list<phot...
Read more

gmail - Is there any documentation for read-only access to the Google Contacts API? -

i want read-only access user's google contacts. there stackoverflow member wanted this, , received following answer : yes, there is, use https://www.googleapis.com/auth/contacts.readonly scope , "view contacts". this exchange reference read-only access google contacts can find using google. simply using access token obtained attempt read usual google contacts api (i.e. https://www.google.com/m8/feeds ) fails insufficient permissions. similarly, using google contacts api on new target fails 404 errors (for example https://www.googleapis.com/auth/contacts.readonly/default/full ). is there documentation anywhere on how use api, or permissible way access google contacts api full read-write access?
Read more

php - Controller/JToolBar not working in Joomla 2.5 -

relevant code: jtoolbarhelper::custom('savecategories', 'save', '', 'save', false, false); ... <input type="hidden" name="controller" value="easyblogcontroller"> according can dig docs , own previous questions, should call savecategories() function in easyblogcontroller . i've tried setting value easyblog , easyblog.php (file name) current easyblogcontroller (class name). clicking on save button refreshes page. not redirect, echo or var_dump test code put in savecategories() function. var_dump ing jrequest::getvar('controller') , 'task' return correct values. creating controller object , using $controller->execute('task'); works. the values going depend on location of controller trying call, , have couple options here. typically there controller in base folder of component (likely components/com_easyblog) in file called controller.php , class name inside ...
Read more