PHP Beginners Section 3 episodes22

Level 73

And further on Jeffrey is replacing the $id with $_GET['id'] from the global object. Did you tried that? Is the $id maybe null ? Because the :id in the query is just a wildcard in order to avoid SQL injection. You can try it this way too:

$note = $db->query('select * from notes where id = ?',  $id)->fetch();

1 like

Level 9

@Nakov Thank you for your reply I will try!

Level 9

@Nakov I tried but the error persists...

Level 102

Otherwise try

$note = $db->query('select * from notes where id = :id', [':id' => $id])->fetch();

1 like

Level 9

@Sinnbeck I tried but the error persists...

Level 9

Level 102

@o227786060 @gmail.com Does this work?

$note = $db->query('select * from notes where id = ?', [$id])->fetch();

If not, what is the exact error now ?

1 like

Level 9

@Sinnbeck that corresponds to your MySQL server version for the right syntax to use near '?'

Level 9

@Sinnbeck Unable to interpret ternary operator

Level 9

@Sinnbeck ： and ? not working

Level 102

@o227786060 @gmail.com Ok that is really strange! Can you show your whole code for the class?

1 like

Level 9

@Sinnbeck Ok, I will upload it to GITHUB later, please confirm it for me, thank you

@Sinnbeck https://github.com/robertliu6866/websites/blob/master/controllers/note.php

Level 9

Level 9

This is my GITHUB please help me to have a look

Best Answer

Level 102

@o227786060 @gmail.com You are not passing in the parameters :)

function query($query, $params) //here
  {


      //PHP mysqli prepare();
      $statement = $this -> connection->prepare($query, $params); //here
   
      $statement -> execute();
      return $statement;
  }
}

5 likes

Level 9

@Sinnbeck Can! ! Thank you for your detailed consultation every time!

1 like

Level 9

Database.php file function query($query,$params =[]{ $statement = $this -> connection->prepare($query,$params); $statement -> execute($params);

3 likes