Difference between revisions of "PHP/MySQL"

From dbawiki
Jump to: navigation, search
Line 11: Line 11:
  
 
[[CSV tables - equivalent of External tables in Oracle]]
 
[[CSV tables - equivalent of External tables in Oracle]]
====Are they enabled?====
 
<pre>
 
show engines;
 
</pre>
 
====Create a CSV table====
 
<pre>
 
create table csv_test (id int, value varchar(20)) engine = csv;
 
insert into csv_test VALUES (1, 'Record 1'), (2, 'Record 2'), (3, 'Record 3');
 
select * from csv_test;
 
</pre>
 
====What it looks like in unix====
 
<pre>
 
$ cat csv_test.CSV
 
"1","record 1"
 
"2","record 2"
 
"3","record 3"
 
</pre>
 
 
 
====References====
 
[http://www.fromdual.ch/csv-storage-engine fromdual.ch]
 

Revision as of 10:17, 25 March 2013

Using prepared statements to avoid SQL injection

Using this method of writing SQL removes the necessity of attempting to clean the input with mysql_real_escape_string() 

$dbPreparedStatement = $db->prepare('INSERT INTO table (postId, htmlcontent) VALUES (:postid, :htmlcontent)');
$dbPreparedStatement->bindParam(':postid', $userId, PDO::PARAM_INT);
$dbPreparedStatement->bindParam(':htmlcontent', $yourHtmlData, PDO::PARAM_STR);
$dbPreparedStatement->execute();

Fill your boots on PDO here

CSV tables - equivalent of External tables in Oracle

Retrieved from "https://mailnest.com/dbawiki/index.php?title=PHP/MySQL&oldid=483"