Generate sql string to query MySQL DB ?

Question

MitkOK 61 Junior Poster

17 Years Ago

Hi folks.

I Have a question :

I'm interested how you generate query string to search DB with more than 1 form with LIKE.

For example :

We have $_POST, $_POST, $_POST, $_POST. How do you generate sql query to search with two criteria ( name and phone ) ?

Thanks.

- Mitko Kostov.

mysql php

3 Contributors
10 Replies
165 Views
3 Days Discussion Span
Latest Post 17 Years Ago Latest Post by dezignwork

Cerberus 17 Junior Poster

17 Years Ago

Do you just mean the sql statement?

Something like this...

$sql="select * from table where name = ' " . $_POST[name] . " ' ";
$sql = $sql . " and phone = ' " . $_POST[phone] . " ';";

Cerberus 17 Junior Poster

17 Years Ago

this is really rough but i think you mean something along these lines

$sql = "select * from table name where ";
$start;

if(isset $_POST['name'])
{
    $sql = $sql . $_POST['name'];
    $start = 1;
}

if(isset $_POST['phone'])
{
    if($start ==1)
    {
        $sql = $sql . "and '". $_POST['name'] ."'";
    }
    else
    {
        $sql = $sql . $_POST['name'];
    }
}

$sql = $sql . ";";

Cerberus 17 Junior Poster

17 Years Ago

I don't know, i'll have to have a think about it. Perhaps using an associative array.

Reply to this topic

Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.

MitkOK 61 Junior Poster · Answer 1 · 2007-07-12T17:32:49+00:00

Yes, that's right. But what if $_POST is not set ? And what if there are more fields to check ?

if (isset($_POST['name'])) { $query.="WHERE name LIKE '%$_POST'name']'"; } 
 else { $query.="AND name LIKE '%$_POST['name']'"; } 

if (isset($_POST['title'])) { $query.="WHERE title LIKE '%$_POST['title']'"; } 
 else { $query.="AND title LIKE '%$_POST['title']'"; } 

if (isset($_POST['email'])) { $query.="WHERE email LIKE '%$_POST['email']'"; } 
 else { $query.="AND email LIKE '%$_POST['email']'"; }

Now think that we have 15 fields to check. Is there an easy way to check ( loop maybe ) ?

MitkOK 61 Junior Poster · Answer 2 · 2007-07-12T18:21:16+00:00

The previous post is wrong, I'm sorry.

I cannot edit it.

MitkOK 61 Junior Poster · Answer 3 · 2007-07-12T18:38:40+00:00

I want elegant way to check and generate.

Now think that we have 15 fields to check. Is there an easy way to check ( loop maybe ) ?

MitkOK 61 Junior Poster · Answer 4 · 2007-07-12T21:07:27+00:00

This I wrote a function for my purpose, it simple but works for me :

function genQuery() {

  $row_names = array("name","email","phone","title");

  $post_values = array($_POST['name'], $_POST['email'], $_POST['phone'], $_POST['title']);

  $num = count($post_values);

  $sqlString = "SELECT * FROM t WHERE";

for ($i=0;$i<$num;$i++) {

  if (empty($post_values[$i]))  {   $sqlString.=""; } 
  
   if (($post_values[$i]) && ($i==0))  {   $sqlString.=" $row_names[$i] LIKE '%$post_values[$i]%'";   }
  
   if (($post_values[$i]) && ($i!=0))  {  $sqlString.=" $row_names[$i] LIKE '%$post_values[$i]%'";   }
     
 }
	 
  $sqlString = preg_replace("/%'/", "%' AND ", $sqlString);
  $len = strlen($sqlString);
  $len=$len-4;
  $sqlString = substr($sqlString, 0 , $len);     
	
  return $sqlString;
		
}

Cerberus 17 Junior Poster · Answer 5 · 2007-07-12T22:48:23+00:00

Cerberus 17 Junior Poster

17 Years Ago

Good solution.

MitkOK 61 Junior Poster · Answer 6 · 2007-07-13T01:22:10+00:00

Hi.

I don't think it's good, but at least works form me.

- Mitko Kostov

dezignwork 1 Newbie Poster · Answer 7 · 2007-07-16T09:13:08+00:00

Have POST as an argument to the function and then run a loop:

foreach($_POST as $key => $value) {
if(!empty($_POST[$key])) {
$sql_where.=" AND $_POST[$key] LIKE '$_POST[$value]'";
}
}

... or something like that. I think it's best to have your custom functions that you know by heart. They always work best :)