看到这是一个错误的绑定错误(搜索stackoverflow),但看起来我绑定了所有变量,没有错别字....我在这里错过了明显的吗?
function connect () {
global $pdo;
try {
$pdo = new PDO("mysql:host=localhost;dbname=test", "root", "root");
$pdo->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
} catch(PDOException $e) {
echo 'ERROR: ' . $e->getMessage();
}
}
function getPhotos ($status = 0, $type = null, $session = null, $name = null) {
global $pdo;
try {
$sql = 'SELECT * FROM images WHERE 1=1';
//Status Filter Query
$sql .=' AND status = :status';
//Type Filter Query
if (!is_null($type)) {
$sql .=' AND type = :type';
}
// Session Filter Query
if (!is_null($session)) {
$sql .=' AND session = :session';
}
// Twitter Handle Filter Query
if (!is_null($name)) {
$sql .=' AND handle = :name';
}
//Prepare The Query
$stmt = $pdo->prepare($sql);
//Fire The Lasers
$stmt->execute(array(':status' => $status, ':type' => $type, ':session' => $session, ':name' => $name));
//Grab
return $stmt->fetchAll();
答案 0 :(得分:8)
仅在实际将变量添加到查询时绑定变量:
//Status Filter Query
$sql .=' AND status = :status';
$vars = array(':status' => $status);
//Type Filter Query
if (!is_null($type)) {
$sql .=' AND type = :type';
$vars[':type'] = $type;
}
// Session Filter Query
if (!is_null($session)) {
$sql .=' AND session = :session';
$vars[':session'] = $session;
}
// etc.
$stmt->execute($vars);