Reputation: 1993
Php postgresql variables in a query
I'm trying to get the right syntax for the following. In this case $post_pub = 1
$sql='SELECT "Publications"."Pub_ID", "Publications"."ART_TITEL" FROM "Publications" where "Pub_ID"="$post_pub"';
Php throws an error: column "$post_pub" does not exist
I've stumbled across pg_query_params, this feels like the right direction, but I need some help. How can I get this to work?
Upvotes: 0
Views: 1065
Answers (2)
Reputation: 51446
the problem is double quotes around variable. Postgres understands it as "database object" name, in this part of query, a column. to avoid it, try using:
$sql='SELECT "Publications"."Pub_ID", "Publications"."ART_TITEL" FROM "Publications" where "Pub_ID"='."$post_pub";
also consider moving to PDO - such usage is a straight invitation for sql injection. Setting$post_pub to 0 or (delete from Publications)" will delete all data if user has enough right, for example.
Upvotes: 0
Reputation: 42753
I never used pg_connect though I think you need something like this:
$sql='SELECT "Publications"."Pub_ID", "Publications"."ART_TITEL"
FROM "Publications"
where "Pub_ID"=$1 ';
$result = pg_query_params($dbconn, $sql, array($post_pub));
Upvotes: 3
Related Questions
- postgresql select query with variables
- Using variables in simple PostgresSQL queries
- How to add a php variable to a postgres query?
- How to properly use variable in a query? postgresql
- PostgreSQL: using variable in query
- Variables inside PostgreSQL/PostGIS query in PHP file
- How Can I refer to the Variable in PHP (pg_query)?
- PHP variables and query
- how to use php variables in postgresql query
- PHP: Variables in a Postgresql Query