php - Attempting to learn mysqli prepared statements; what am I doing wrong? -


here's error i'm getting...

failed prepare statement: (1064) have error in sql syntax; check manual corresponds mysql server version right syntax use near '?.pages slug='?'' @ line 1

and here's code...

require_once("../database/config.php");          $pageslug = "home";          $db = new mysqli(_db_host, _db_user, _db_password, _db_name);          if ( $db->connect_errno ) {             echo "failed connect mysql: (" . $db->connect_errno . ") " . $db->connect_error;             exit();         }          if ( !$selectquery = $db->prepare("select * ?.pages slug='?'") ) {             echo "failed prepare statement: (" . $db->errno . ") " . $db->error;             exit();         }          if ( !$selectquery->bind_param("ss", _db_name, $pageslug) ) {             echo "binding parameters failed: (" . $selectquery->errno . ") " . $selectquery->error;             exit();         }          if ( !$selectquery->execute() ) {             echo "exexute failed: (" . $selectquery->errno . ") " . $selectquery->error;             exit();         }          echo "<pre>i got here!</pre>";         exit();

the ../database/config.php contains global variables reference above ("_db_name", etc).

i guess i'm still wrapping head around prepared statements things , don't know i'm doing wrong.

thanks in advance!

prepared statements can not use parameters supply identifiers (schema names, table names, column names, etc), because submitted dbms verify syntax, before supplying values of parameters.

http://php.net/mysqli-prepare

the markers legal in places in sql statements. example, allowed in values() list of insert statement (to specify column values row), or in comparison column in clause specify comparison value. however, not allowed identifiers (such table or column names), in select list names columns returned select statement, or specify both operands of binary operator such = equal sign. latter restriction necessary because impossible determine parameter type. it's not allowed compare marker null ? null too. in general, parameters legal in data manipulation language (dml) statements, , not in data definition language (ddl) statements

http://dev.mysql.com/doc/refman/5.0/en/prepare.html

parameter markers can used data values should appear, not sql keywords, identifiers, , forth.

still, may use dynamic sql. example:

$table = 'example'; // should safe, avoid user input. $sql   = "select * `{$table}` `id` = ?"; $stmt  = $db->prepare($sql); // ...

upd:

i've noticed, you're using single quotes ' around string parameter markers. should avoided because, dbms cares them itself. slug='?' should slug = ?.

read carefully: http://php.net/mysqli-prepare.


Comments

Post a Comment

Popular posts from this blog

php - Calling a template part from a post -

i include iframe within post in wordpress. located inside content of post, meaning cannot in post template file, otherwise either before or after. i'd add facebook plugin within posts: <div id="socialwrap"><div class="fb-like" data-href="http://onlinearizonahomes.info" data-send="true" data-width="450" data-show-faces="true" data-font="arial"></div></div> i thinking of calling template part within post <?php get_template_part( 'social' ); ?> cannot use php within post without plugin (i'd avoid using plugin this). an alternative using javascript create html in post, seems unnecessary use of javascript. what best way add html within wordpress post? you can use shortcode. add functions.php function cudjex_fbshare( $atts, $content = null ) { global $post; $link = get_permalink($post->id); return '<div id="socialwrap...
Read more

Firefox SVG shape not printing when it has stroke -

Image
i having issue svg shapes have stroke , trying them print in firefox. this simplest example: <svg xmlns="http://www.w3.org/2000/svg" version="1.1" xmlns:xlink="http://www.w3.org/1999/xlink"> <rect x="0" y="0" rx="15" ry="15" width="300" height="400" style="stroke:black;stroke-width:5;" fill="black" /> <circle id="firstcircle" cx="50" cy="50" r="30" stroke="black" stroke-width="2" fill="white" style="opacity:0.75;"/> <circle id="secondcircle" cx="50" cy="150" r="30" fill="white" style="opacity:0.75;"/> </svg> when try , print first shape 1 of 2 things: it not show @ all it shows off center in bounding box. the second shape no stroke shows expected, expected. when displaying on scre...
Read more

How to mention the localhost in android -

i trying call localhost in android application. unfortunately not possible used several methods emulator local host http://10.0.2.2/android/dbconnection.php and network ip address http://192.168.1.xx/android/dbconnection.php also http://localhost:8080/android/dbconnection.php but nothing connected localhost. purpose refer stackoverflow answers not working i facing same problem when worked on localhost. referred stackoverflow answer got solution create new emulator works fine in new emulator.
Read more