mysqli – Make Me Engineer

How to insert into MySQL using mysqli

File sample.html <form action=”sample.php” method=”POST”> <input name=”name” type=”text”> <input name=”text” type=”text”> <input name=”submit” type=”submit” value=”Submit”> </form> File sample.php <?php if (isset($_POST[‘submit’])) { mysqli_report(MYSQLI_REPORT_ERROR | MYSQLI_REPORT_STRICT); $mysqli = new mysqli(‘localhost’, ‘user’, ‘password’, ‘mysampledb’); // replace every piece of data in SQL with question mark $sql = “INSERT INTO SampleTable (name, text) VALUES (?,?)” // 2 question … Read more

$stmt->execute() : How to know if db insert was successful?

The execute() method returns a boolean … so just do this : if ($stmt->execute()) { // it worked } else { // it didn’t } Update: since 2022 and beyond, a failed query will throw an error Exception. So you won’t have to write any code to “skip other pieces of code further down the … Read more

Mysqli prepared statements build INSERT query dynamically from array

Having such a function is a good idea per se. It indicates that you are a programmer in your heart, not just a tinkerer that writes PHP from ready made blocks like a Lego figure. Such a function can greatly improve your code. But with great power comes great responsibility. Such a function is a … Read more

MySQLi prepared statements with IN operator [duplicate]

I’ve recently found the solution for my question. Maybe it’s not the best way to do it, but it works nice! Prove me wrong:) <?php $lastnames = array(‘braun’, ‘piorkowski’, ‘mason’, ‘nash’); $arParams = array(); foreach($lastnames as $key => $value) //recreate an array with parameters explicitly passing every parameter by reference $arParams[] = &$lastnames[$key]; $count_params = … Read more

php warning: mysqli_close() expects parameter 1 to be mysqli

mysqli_close($result); The line above is incorrect. You only need to call mysqli_close() once (if at all since, as pointed out in the comments, the connection is closed at the end of the execution of your script) and the parameter should be your link identifier, not your query resource. Remove it.

Updating from MYSQL to MYSQLI [duplicate]

You can download a converter tool from here: https://github.com/philip/MySQLConverterTool The code it generates is pretty gross, mainly because of the way it implements the default database link argument with a $GLOBAL variable. (This also makes it easy to recognize when someone is using code that’s gone through the converter.) There’s also a MySQL Shim Library … Read more

Mysqli get_result alternative

Here is a neater solution based on the same principle as lx answer: function get_result( $Statement ) { $RESULT = array(); $Statement->store_result(); for ( $i = 0; $i < $Statement->num_rows; $i++ ) { $Metadata = $Statement->result_metadata(); $PARAMS = array(); while ( $Field = $Metadata->fetch_field() ) { $PARAMS[] = &$RESULT[ $i ][ $Field->name ]; } call_user_func_array( … Read more

MySQLI binding params using call_user_func_array

It must be like this: //connect $mysqli = new mysqli($host, $user, $password, $db_name); //prepare $stmt = $mysqli->prepare(“SELECT * FROM the_table WHERE field1= ? AND Field2= ?”); //Binding parameters. Types: s = string, i = integer, d = double, b = blob $params= array(“ss”,”string_1″,”string_2″); //now we need to add references $tmp = array(); foreach($params as $key … Read more

Fatal error: Call to undefined method mysqli_stmt::fetch_array() [duplicate]

Using prepared statements there is no fetch_array(). Use mysqli_stmt::fetch() instead or to fetch multiple records use mysqli_result::fetch_all() Check the manual: mysqli_stmt::fetch() or mysqli_result::fetch_all()

Is mysql_real_escape_string() necessary when using prepared statements?

No, prepared queries (when used properly) will ensure data cannot change your SQL query and provide safe querying. You are using them properly, but you could make just one little change. Because you are using the ‘?’ placeholder, it is easier to pass params through the execute method. $sql->execute([$consulta]); Just be careful if you’re outputting … Read more

+ More