dousha4804 2016-11-14 06:56
浏览 49

在PHP函数中包装MySQL查询

I’m trying wrap a MySQL query inside a php function

I have two questions

1.) Below code work but I need to include the database connection inside each the functions. Can I call db.php globally without having to add require("db.php");

functions.php

function GetUsers($id, $active){
  require("db.php");
  $result = $mysqli->query("SELECT * FROM users WHERE id = '$id' and active = '$active' ") or trigger_error(mysql_error()); 
  return $result;
 }

index.php

include("functions.php");
$id = 2;
$active = 1;
$row = GetGetUsers ($id, $active); 
foreach($row  as $users) { 
    echo '<h1>'. $users['username']. '</h1>';
    echo '<p>'. $users['email']. '</p>';
}

2.) I try the same code with mysql prepared statement that didn't work at all

functions.php

function GetAccounts($id, $active){
  require("db.php");
  $result = $mysqli->prepare("SELECT * FROM users WHERE id = ? and active = ? ") or trigger_error(mysql_error()); 
  $result->bind_param('ii', $id, $active);
  $result->execute(); 
  $result->close();
  return $result;
 }

db.php

$mysqli = new mysqli(); $mysqli->connect('localhost', 'root', 'mysql', 'function_test');

Really appreciate any comments and answers to solve my two questions.

  • 写回答

1条回答 默认 最新

  • dongliu6848 2016-11-14 07:06
    关注

    Here is a class that I use throughout my project.
    Try this

    <?php 
 class access_db{
function Connect() {
     $this->con= new mysqli("localhost","accoladets","accolad3TS", "accoladets") or die(mysqli_error());
}
    function eClose(){
        mysqli_close($this->con);
    } 
    /**Insert data
    * @param string $table  name of the table
    * @param string $field  table field eg. "field1,field2,field3"
    * @param string $param  field parameters subtitute eg. "(?,?,?)"
    * @param array $valarr  array of field values eg. array("string1",2,"string3") or array(array(),array())
    * @param string $option  (optional)
    * Available option: <b>get_id</b> - (for single insert only)get the last auto generated id after query.
    * @param string $option2  (optional). multi or NULL
    * @return boolean true, error message or the expected value of the given option
    */
    function insert_data($table,$field,$param,$valarr,$option = NULL,$option2 = NULL){
        $this->Connect();
        $sql = "INSERT INTO ".$table." (".$field.") VALUES ".$param;
        if($stmt = $this->con->prepare($sql)){
            if($option2 == 'multi'){
                $idarr = array();
                foreach($valarr as $v){
                    $this->dynamic_bind_param($stmt, $v);
                    if($stmt->execute()){
                        if(is_null($option) == true){
                            $idarr = true;
                        }else{
                            if($option == 'get_id'){
                                $idarr[] = $stmt->insert_id;
                            }
                        }
                    }else{
                        return '<b>(INSERT Error)</b> Error in executing the prepared statement: '.htmlspecialchars($stmt->error);
                        exit();
                    }
                }
                return $idarr;
                exit();
            }else{
                $this->dynamic_bind_param($stmt, $valarr);
                if($stmt->execute()){
                    if(is_null($option) == true){
                        return true;
                    }else{
                        if($option == 'get_id'){
                            return $stmt->insert_id;
                        }
                    }
                }else{
                    return '<b>(INSERT Error)</b> Error in executing the prepared statement: '.htmlspecialchars($stmt->error);
                    exit();
                }
            }
        }else{
            return '<b>(INSERT Error)</b> Error in initializing the prepared statement: '.htmlspecialchars($stmt->error).'SQL: '.$sql.' VALUES: '.json_encode($valarr);
            exit();
        }
        $stmt->close();
        $this->eClose();
    }
    /**Update data
    * @param string $table  name of the table
    * @param string $field  table field eg. "field1 = ?, field2 = ?, field3 = ?"
    * @param string $where  database filter eg. "filter1 = ? AND filter2 = ?" or ""
    * @param array $valarr  array of field values eg. array("string1",2,"string3")
    * @return boolean true or error message
    */
    function update_data($table,$field,$where,$valarr){
        $this->Connect();
        $where = ($where == '')? '' : 'WHERE '.$where;
        $sql = "UPDATE ".$table." SET ".$field." ".$where;
        if($stmt = $this->con->prepare($sql)){
            $this->dynamic_bind_param($stmt, $valarr);
            if($stmt->execute()){
                return true;
            }else{
                return '<b>(UPDATE Error)</b> Error in executing the prepared statement: '.htmlspecialchars($stmt->error).'SQL: '.$sql.' Values: '.json_encode($valarr);
                exit();
            }
        }else{
            return '<b>(UPDATE Error)</b> Error in initializing the prepared statement: '.htmlspecialchars($stmt->error).'SQL: '.$sql;
            exit();
        }
        $stmt->close();
        $this->eClose();
    }
    /**Delete data
    * @param string $table  name of the table
    * @param string $where  database filter eg. "filter1 IN (1,2,3) AND filter = 4"
    * @return boolean true or error message
    */
    function delete_data($table,$where = NULL){
        $this->Connect();
        $where = (is_null($where) == true)? '' : 'WHERE '.$where;
        $sql = "DELETE FROM ".$table." ".$where;
        $qry = $this->con->query($sql);
        if($qry){
            return true;
        }else{
            return '<b>(Delete Error)</b> Error executing the delete query: '.htmlspecialchars($this->con->error);
        }
        $this->eClose();
    }
    /**Get table data
    * @param string $table  name of the table
    * @param string $field  table field eg. "field1, field2, field3"
    * @param string $orderby  database filter eg. "field1 ASC" or NULL
    * @param string $where  database filter eg. "filter1 = ? AND filter2 = ?" or NULL
    * @param array $valarr  array of field values eg. array("string1",2,"string3") or NULL
    * @return array Multidimensional_Arrays  Two-dimensional Arrays
    *
    * Array([0] => Array([field1] => string1,[field2] => 2,[field3] => string3))
    */
    function get_table_data($table,$field,$orderby = NULL,$where = NULL,$valarr = NULL){
        $this->Connect();
        $fields = array();
        $results = array();
        $orderby = (is_null($orderby) == true)? '' : 'ORDER BY '.$orderby;
        $where = (is_null($where) == true)? '' : 'WHERE '.$where;
        $sql = "SELECT ".$field." FROM ".$table." ".$where." ".$orderby;
        if($stmt = $this->con->prepare($sql)){
            if(is_null($valarr) == false){
                $this->dynamic_bind_param($stmt, $valarr);
            }
            if($stmt->execute()){
                $meta = $stmt->result_metadata();
                while ($field = $meta->fetch_field()) { 
                    $var = $field->name; 
                    $$var = null; 
                    $fields[$var] = &$$var;
                }
                call_user_func_array(array($stmt,'bind_result'),$fields);
                $i = 0;
                while ($stmt->fetch()) {
                    $results[$i] = array();
                    foreach($fields as $k => $v){
                        $results[$i][$k] = $v;
                    }
                    $i++;
                }
                return $results;
            }else{
                return '<b>(SELECT Error)</b> Error in executing the prepared statement: '.htmlspecialchars($stmt->error).'SQL: '.$sql;
            }
        }else{
            return '<b>(SELECT Error)</b> Error in initializing the prepared statement: '.htmlspecialchars($stmt->error).'SQL: '.$sql;
        }
        $stmt->close();
        $this->eClose();
    }
    private function dynamic_bind_param($stmt,$values){   
        if(is_array($values) == true){
            $types = '';
            foreach($values as $param) {
                // set param type
                if (is_string($param)) {
                    $types .= 's';  // strings
                } else if (is_int($param)) {
                    $types .= 'i';  // integer
                } else if (is_float($param)) {
                    $types .= 'd';  // double
                } else {
                    $types .= 'b';  // default: blob and unknown types
                }
            }
            $paramArr[] = &$types;
            for ($i=0; $i<count($values);$i++){
                $paramArr[] = &$values[$i];
            }
            call_user_func_array(array($stmt,'bind_param'), $paramArr);
        }else{
            if (is_string($values)) {
                $types .= 's';  // strings
            } else if (is_int($values)) {
                $types .= 'i';  // integer
            } else if (is_float($values)) {
                $types .= 'd';  // double
            } else {
                $types .= 'b';  // default: blob and unknown types
            }
            $stmt->bind_param($types,$values);
        }
        return $stmt;
    }
}
?>

    In your php code add this line above all the other require_once '../class/db_fn_class.php'; change the path of the class file base on where you put it then instantiate it something like this $access_db = new access_db();. here's an example of how to use it after instantiation.

    $data = $access_db->get_table_data("users","field1,field2",NULL,"id = ? AND active = ?",array($id, $active));

    It will return the data in an object array so here's how to extract the data

    foreach($data as $val){
$f1 = $val["field2"]; // use the name of every table field you put on the get_table_data as the array id of the $val. $val is user_define and so as $data
$f2 = $val["field2"]
}
    评论

报告相同问题?

悬赏问题

  • ¥15 装 pytorch 的时候出了好多问题,遇到这种情况怎么处理?
  • ¥20 IOS游览器某宝手机网页版自动立即购买JavaScript脚本
  • ¥15 手机接入宽带网线,如何释放宽带全部速度
  • ¥30 关于#r语言#的问题:如何对R语言中mfgarch包中构建的garch-midas模型进行样本内长期波动率预测和样本外长期波动率预测
  • ¥15 ETLCloud 处理json多层级问题
  • ¥15 matlab中使用gurobi时报错
  • ¥15 这个主板怎么能扩出一两个sata口
  • ¥15 不是,这到底错哪儿了😭
  • ¥15 2020长安杯与连接网探
  • ¥15 关于#matlab#的问题:在模糊控制器中选出线路信息,在simulink中根据线路信息生成速度时间目标曲线(初速度为20m/s,15秒后减为0的速度时间图像)我想问线路信息是什么