php - PDO prepared statements and their execution -

-

i have 'upgraded' mysql* pdo, , have couple of related questions:

1/ have form on webpage submits alot of data. rather have 1 looong prepared statement maybe 50 items in it, id split maybe 5 separate statements:

//tods $stmt = $db->prepare("update first_page_data(tod_house, tod_bung, tod_flat, tod_barnc, tod_farm, tod_small, tod_build, tod_devland, tod_farmland) set(?,?,?,?,?,?,?,?,?) email_address=?");  $stmt->bindvalue(1, $_post['tod_house'], pdo::param_str); $stmt->bindvalue(2, $_post['tod_bung'], pdo::param_str); $stmt->bindvalue(3, $_post['tod_flat'], pdo::param_str); $stmt->bindvalue(4, $_post['tod_barnc'], pdo::param_int); $stmt->bindvalue(5, $_post['tod_farm'], pdo::param_str); $stmt->bindvalue(6, $_post['tod_small'], pdo::param_str); $stmt->bindvalue(7, $_post['tod_build'], pdo::param_str); $stmt->bindvalue(8, $_post['tod_devland'], pdo::param_str); $stmt->bindvalue(9, $_post['tod_farmland'], pdo::param_str); $stmt->bindvalue(10, $_session['buyer_email']); $stmt->execute();

this first of 5 blocks. if didnt split statement 50 items long. question there noticable adverse effects splitting up? speed, pressure on server, etc... there 5 smaller updates database rather 1 big one.

2/ second question quite simple - code above considered 'safe'? ive seen people put $_post values variable (mostly because of mysql) , statements. ive read using pdo prevents injections , post values can put straight bindvalue im not entirely sure!

yes, it's safe (pdo::prepare takes care of that), , 1 big statement more efficient series of smaller ones. can script code make less painful read , edit. suggestions:

  1. put query in string , make more vertical, 1 line per parameter. heredoc syntax great , avoids concatenation.

  2. use :whatever in query instead of numbered values, clarity , portability.

  3. instead of calling bindvalue repeatedly, build array , pass whole execute(); arrays simplest thing php can do, , should less overhead calling bindvalue repeatedly, though real difference negligible.

    $arrparams[] = array(':tod_house' => $_post["tod_house"];

    $stmt->execute($arrparams);


Comments

Post a Comment

Popular posts from this blog

java - WrongTypeOfReturnValue exception thrown when unit testing using mockito -

-
my test list<person> mylist; @test public void testisvalidperson() { mylist = new arraylist<person>(); mylist.add(new person("tom")); when(persondao.get(person)).thenreturn(mylist); when((persondao.get(person)).isempty()).thenreturn(false);//------exception thrown boolean result = service.isvalid("tom"); assertfalse(result); } method tested: public boolean isvalid(string person){ persondao = new persondao(); person personobj = new person(person); return (persondao.get(person).isempty())?false : true; } exception thrown: org.mockito.exceptions.misusing.wrongtypeofreturnvalue: boolean cannot returned get() get() should return list *** if you're unsure why you're getting above error read on. due nature of syntax above problem might occur because: 1. exception *might* occur in wrongly written multi-threaded tests. please refer mockito faq on limitations of concurrency testing. 2. sp
Read more

php - Magento - Deleted Base url key -

-
i working on cleaning url: http://mydomain.com/shop/shop/deals i going through settings in configuration tab in admin panel on magento , change secure , unsecure base urls remove first base url "shop" web page read: http://mydomain.com/shop/deals so changed unsecure base urls mydomain.com/shop mydomain.com , secure 12.345.67.89/shop 12.345.67.89. wrong thing do. i cannot reload page or admin console. how access these files through ftp , change correctly there?? when make changes in admin panel changes made in database not in file. have make changes in database. 1.go database , select core_config_data table under table find web/unsecure/base_url , web/secure/base_url . make changes here. don't forget clear cache in var/cache folder
Read more

android - How to disable Button if EditText is empty ? -

-
i have edittext , button in application. when button clicked,the text entered in edittext added listview. i want disable button if edittext empty.how ? this code button click imagebutton imb=(imagebutton)findviewbyid(r.id.btn_send); imb.setonclicklistener(new onclicklistener() { @override public void onclick(view arg0) { edittext et = (edittext)findviewbyid(r.id.edittext1); string str = et.gettext().tostring(); web1.add(str); toast.maketext(shoutsingleprogram.this, "you entered...."+str, toast.length_short).show(); adapter1.notifydatasetchanged(); et.settext(""); } }); } how can ? edittext1.addtextchangedlistener(new textwatcher() { @override public void ontextchanged(charsequence s, int start, int before, in
Read more