tags:

views:

509

answers:

1
+2  Q: 

How to use bind variables with Zend_Db_Table->update() in the where clause

If I want to use the Zend_Db_Table->update() method to update my table with data, I cannot find anyway to use bind variables in the "where" clause.

The method signature is:

int  update($data, array|string $where)

Usually you will call the method like this:

$table = new Bugs();

$data = array(
    'updated_on'      => '2007-03-23',
    'bug_status'      => 'FIXED'
);

$where = $table->getAdapter()->quoteInto('bug_id = ?', 1234);

$table->update($data, $where);

quoteInto is just going to escape the variable, not bind it.

There needs to be a way to use bind variables, otherwise a DBMS is not going to cache this query effectivly.

Am I missing something, or is this an oversight on Zend's part?

+2  A: 

You are only updating data, RDBMS (I assume MySQL) doesn't cache UPDATE queries. If you still want to use bind variables (security? performance?), you will have to use prepared statements:

$db = Zend_Db_Table_Abstract::getDefaultAdapter();
$stmt = $db->prepare("UPDATE table SET key = :key, value = :value");

foreach ($data as $key=>$value) {
    $stmt->bindParam('key', $key);
    $stmt->bindParam('value', $value);
    $stmt->execute();
}

But unless you are having millions of UPDATE queries in a batch I don't think you should bother with this. Just use the $table->update($data, $where);

bas  2009-10-22 22:01:41
Thanks. I am using Oracle in an internal corporate application. You're correct, performance isn't an issue as such - I asked this question because I like to follow best practices where possible.So I can either rewrite my code as you suggest or accept this limitation with Zend_Db_Table.It's disapointing, because it is only the WHERE clause that is not bound - the SET clause does use bound variables under the hood. You would think they would provide a way to use bound variables for all parts of the query.
asgeo1  2009-10-23 01:23:56

related questions

Zend framework; Getting controller to use different viewer.
Zend Framework - Is there a script to index static content from Views?
How to Use Same Models in Different Modules in Zend Framework?
Call to a member function on a non-object
Automatically joining tables without breaking default behaviour in Zend Framework
Emulate MySQL LIMIT clause in Microsoft SQL Server 2000
Zend Framework fetchAll
MVC data design problem with Zend framework.
Custom Filters/Validators in Zend Framework
I'm confused about something in the Zend Framework.
How to generate pdf files _with_ utf-8 multibyte characters using Zend Framework
URL segment to action method parameter in Zend Framework
Create cronjob with Zend Framework
Route-problem regarding Url-encoded Umlauts (using the Zend-framework)
In need for a site that explains how to use PHPUnit
How can I initialize Zend_Form_Element_Select with a config array?
Zend Framework - ErrorHandler does not seem to be working as expected.
Zend Framework Select Operator Precedence
Zend Framework or CakePHP?
How do I use PHPUnit with Zend Framework?
ASP.NET MVC versus the Zeitgeist
Smarty integration into the Code Igniter framework.
Failed to load Zend/Loader.php. Trying to work out why?
Using Zend Framework and setting a Zend_Form_Element form field to be required, how do I change the validator used to ensure that the element is not blank
Can you recommend a good book on zend framework.