Login or Register to Ask a Question and Join Our Community

Linux and UNIX Man Pages

Linux & Unix Commands - Search Man Pages

maxdb_real_escape_string(3) [php man page]

MAXDB_REAL_ESCAPE_STRING(3)						 1					       MAXDB_REAL_ESCAPE_STRING(3)

maxdb_real_escape_string - Escapes special characters in a string for use in an SQL statement, taking into account the current charset of the con-
nection

       Procedural style

SYNOPSIS

       string maxdb_real_escape_string (resource  $link, string  $escapestr)

DESCRIPTION

       Object oriented style
       string maxdb::real_escape_string (string  $escapestr)

	This function is used to create a legal SQL string that you can use in an SQL statement. The string escapestr is encoded to an escaped SQL
       string, taking into account the current character set of the connection.

	Characters encoded are ', ".

RETURN VALUES

	Returns an escaped string.

EXAMPLES

       Example #1

	      Object oriented style

	      <?php
	      $maxdb = new maxdb("localhost", "MONA", "RED", "DEMODB");

	      /* check connection */
	      if (maxdb_connect_errno()) {
		 printf("Connect failed: %s
", maxdb_connect_error());
		 exit();
	      }

	      $maxdb->query("CREATE TABLE temp.mycity LIKE hotel.city");

	      $city = "'s Hertogenbosch";

	      /* this query will fail, cause we didn't escape $city */
	      if (!$maxdb->query("INSERT into temp.mycity VALUES ('11111','$city','NY')")) {
		 printf("Error: %s
", $maxdb->sqlstate);
	      }

	      $city = $maxdb->real_escape_string($city);

	      /* this query with escaped $city will work */
	      if ($maxdb->query("INSERT into temp.mycity VALUES ('22222','$city','NY')")) {
		 printf("%d Row inserted.
", $maxdb->affected_rows);
	      }

	      $maxdb->close();
	      ?>

       Example #2

	      Procedural style

	      <?php
	      $link = maxdb_connect("localhost", "MONA", "RED", "DEMODB");

	      /* check connection */
	      if (maxdb_connect_errno()) {
		 printf("Connect failed: %s
", maxdb_connect_error());
		 exit();
	      }

	      maxdb_query($link, "CREATE TABLE temp.mycity LIKE hotel.city");

	      $city = "'s Hertogenbosch";

	      /* this query will fail, cause we didn't escape $city */
	      if (!maxdb_query($link, "INSERT into temp.mycity VALUES ('11111','$city','NY')")) {
		 printf("Error: %s
", maxdb_sqlstate($link));
	      }

	      $city = maxdb_real_escape_string($link, $city);

	      /* this query with escaped $city will work */
	      if (maxdb_query($link, "INSERT into temp.mycity VALUES ('22222','$city','NY')")) {
		 printf("%d Row inserted.
", maxdb_affected_rows($link));
	      }

	      maxdb_close($link);
	      ?>

       The above example will output something similar to:

       Warning: maxdb_query(): -5016 POS(43) Missing delimiter: ) <...>
       Error: 42000
       1 Row inserted.

SEE ALSO

       maxdb_character_set_name(3).

PHP Documentation Group 											       MAXDB_REAL_ESCAPE_STRING(3)

Check Out this Related Man Page

MAXDB_INSERT_ID(3)							 1							MAXDB_INSERT_ID(3)

maxdb_insert_id - Returns the auto generated id used in the last query

       Procedural style

SYNOPSIS

       mixed maxdb_insert_id (resource	$link)

DESCRIPTION

       Object oriented style
       mixed$maxdb->insert_id ()

	The  maxdb_insert_id(3)  function returns the ID generated by a query on a table with a column having the DEFAULT SERIAL attribute. If the
       last query wasn't an INSERT or UPDATE statement or if the modified table does not have a column with the  DEFAULT  SERIAL  attribute,  this
       function will return zero.

RETURN VALUES

	The  value  of the DEFAULT SERIAL field that was updated by the previous query. Returns zero if there was no previous query on the connec-
       tion or if the query did not update an DEFAULT_SERIAL value.

       Note

	       If the number is greater than maximal int value, maxdb_insert_id(3) will return a string.

EXAMPLES

       Example #1

	      Object oriented style

	      <?php
	      $maxdb = new maxdb("localhost", "MONA", "RED", "DEMODB");

	      /* check connection */
	      if (maxdb_connect_errno()) {
		 printf("Connect failed: %s
", maxdb_connect_error());
		 exit();
	      }

	      maxdb_report (MAXDB_REPORT_OFF);
	      $maxdb->query("DROP TABLE mycity");
	      maxdb_report (MAXDB_REPORT_ERROR);

	      $maxdb->query("CREATE TABLE mycity LIKE hotel.city");
	      $maxdb->query("ALTER TABLE mycity ADD id FIXED(11) DEFAULT SERIAL");

	      $query = "INSERT INTO mycity (zip,name,state) VALUES ('12203','Albany' ,'NY')";
	      $maxdb->query($query);

	      printf ("New Record has id %d.
", $maxdb->insert_id);

	      /* drop table */
	      $maxdb->query("DROP TABLE mycity");

	      /* close connection */
	      $maxdb->close();
	      ?>

       Example #2

	      Procedural style

	      <?php
	      $link = maxdb_connect("localhost", "MONA", "RED", "DEMODB");

	      /* check connection */
	      if (maxdb_connect_errno()) {
		 printf("Connect failed: %s
", maxdb_connect_error());
		 exit();
	      }

	      maxdb_report (MAXDB_REPORT_OFF);
	      maxdb_query($link,"DROP TABLE mycity");
	      maxdb_report (MAXDB_REPORT_ERROR);

	      maxdb_query($link, "CREATE TABLE mycity LIKE hotel.city");
	      maxdb_query($link, "ALTER TABLE mycity ADD id FIXED(11) DEFAULT SERIAL");

	      $query = "INSERT INTO mycity (zip,name,state) VALUES ('12203','Albany' ,'NY')";
	      maxdb_query($link, $query);

	      printf ("New Record has id %d.
", maxdb_insert_id($link));

	      /* drop table */
	      maxdb_query($link, "DROP TABLE mycity");

	      /* close connection */
	      maxdb_close($link);
	      ?>

       The above example will output something similar to:

       New Record has id 1.

PHP Documentation Group 													MAXDB_INSERT_ID(3)
Man Page