以下代码返回给我类似电话号码的人。它完美无缺,但是当没有数字时,该功能仍会返回信息,这意味着如果没有其他人具有相似数字,我无法检查隐藏某个框。
功能
function getothers($tid,$criteria,$telephone,$telephone2,$elector){
global $dbh;
$tid = '-TID'.$tid;
$sql = "SELECT * FROM electors WHERE ((telephone > 0 AND telephone IN ('$telephone','$telephone2')) OR (telephone2 > 0 AND telephone2 IN ('$telephone','$telephone2'))) $criteria AND records NOT RLIKE '$tid' AND ID != '$elector' LIMIT 10";
$result = $dbh->query($sql);
return $result;
}
电话
<?php $others = getothers($post['TID'],$post['criteria'],$elector['telephone'],$elector['telephone2'],$elector['ID']); ?>
不能工作的线
<?php if(!$others){?>
$others仍然有一些内容。我想我可能会错过PDO中的一行。有什么想法吗?
print_r
PDOStatement Object ( [queryString] => SELECT * FROM electors WHERE ((telephone > 0 AND telephone IN ('02085414023 ','')) OR (telephone2 > 0 AND telephone2 IN ('02085414023 ',''))) AND (this_vi_street = '' AND this_vi_telephone = '') AND (mosaic IN ('A01','A02','A03','A04','A05','A07','B11','C15','C16','C17','C18','H46','J52','K57','K58','K60') OR last_vi IN ('C','P')) AND postal_vote != 1 AND records NOT RLIKE '-TID1' AND ID != '13' LIMIT 10 )
答案 0 :(得分:1)
根据评论,使用预准备语句的版本:
function getothers($tid, $criteria, $telephone, $telephone2, $elector) {
global $dbh;
$stmt = $dbh->prepare("SELECT *
FROM electors
WHERE ((telephone > 0 AND telephone IN (:telephone, :telephone2))
OR (telephone2 > 0 AND telephone2 IN (:telephone, :telephone2)))
$criteria
AND records NOT RLIKE :tid
AND ID != :elector
LIMIT 10";
$stmt->execute(array(
':telephone' => $telephone,
':telephone2' => $telephone2,
':tid' => '-TID' . $tid,
':elector' => $elector
));
return $stmt->fetchAll();
}
此代码中仍有一些不足之处:
global获取数据库连接,这是整体糟糕的应用程序结构。您应该使用类或将$dbh作为常规参数传递给函数。$criteria连接到准备好的语句中。你真的需要这样的动态条件,你不能在不将整个SQL块连接到它的情况下为它准备查询吗?答案 1 :(得分:0)
也许做点什么
$result = $dbh->query($sql);
if($result->rowCount()>0)
{
return $result;
}
return false;