tags:

views:

71

answers:

5
Q: 

MySql - autocomplete

Hi Everyone,

I am creating an Ajax autocomplete application and would like know if there is an SQL query I can use for this purpose - e.g if someone types "p" I would like to retrieve all words beginning with "p", if they add "e" retrieve all words starting with "pe" - and continue like that.

Someone suggested the query below but I don't think it's what I'm looking for:

$query = "SELECT* FROM nametable WHERE names LIKE '$partialstring' ";
+2  A: 

This should work:

$query = "SELECT * FROM nametable WHERE names LIKE '$partialstring%'"

The %is the wildcard character in SQL.

Edit: And yes, please sanitize that input.

Henning  2009-12-17 10:03:13
Thanks for the tip.
Q_the_dreadlocked_ninja  2009-12-17 10:07:43
A: 

Assuming you are sanitising that input, it should be something like:

$query = "SELECT* FROM nametable WHERE names LIKE '$partialstring%' ";
akamike  2009-12-17 10:03:24
A:  
$query = "SELECT* FROM nametable WHERE names LIKE '$partialstring%' ";

I've added % only on the right side since you would like to have only the words that are beginning with the input letters.

However, please don't use this query until you've filtered it against SQL injections.

antpaw  2009-12-17 10:05:29
A: 

You can run a query like what Henning and others have written. And, yes, please sanitize the input to prevent injection attacks. I have also found this method to be rather slow when there are a lot of records. If you wish to match 'Bush' in the word 'GeorgeW**Bush**Senior' ,the above said method wont work. In which case you have to use the query 

  select name from nametable where name like '%match%';

Try looking at the mysql full text query method. Its extremely handy in some cases.

Ritesh M Nayak  2009-12-17 10:13:19
Thanks mate for the advice - i only want to match the first few letters and it is a relatively small table with city names - '$partialstring%' is working just fine.
Q_the_dreadlocked_ninja  2009-12-17 10:21:31
A: 

Apart from regular special chars, you have to escape those with a special meaning in LIKE clauses.

I haven't fully tested the code but it should be something like this, assuming you are using PHP and the good old mysql extension (you don't mention):

$escape = '|';

$like = strtr(
    mysql_real_escape_string($partialstring),
    array(
     '%' => $escape . '%',
     '_' => $escape . '_',
     $escape => $escape . $escape,
    )
);

$query = "SELECT names FROM nametable WHERE names LIKE '$like%' ESCAPE '$escape' ORDER BY names LIMIT 10";

Also, don't forget to create an index on the names column.

Álvaro G. Vicario  2009-12-17 10:35:51

related questions

Remove Quotes and Commas from a String in MySQL
What's the best way of converting a mysql database to a sqlite one?
How do you manage databases in development, test, and production?
Multiple foreign keys?
Add 1 to a field (MySQL)
Issues using MS Access as a front-end to a MySQL database back-end?
Bigger than a char but smaller than a blob
How do I retrieve my MySQL username and password?
Long-time LAMP Developer moving to VB.NET
How do I Concatenate entire result sets in MySQL?
Full complete MySQL database replication? Ideas? What do people do?
SQL: Distribution of table in time
SQLite vs MySQL
How do I create a new Ruby on Rails application using MySQL instead of SQLite?
Multiple Updates in MySQL
MySQL/Apache Error in PHP MySQL query
What all do I need to escape when sending a (My)SQL query?
Auto Generate Database Diagram MySQL
Mechanisms for tracking DB schema changes
How big can a MySQL database get before performance starts to degrade.
Python and MySQL
SQL Server 2005 implementation of MySQL REPLACE INTO?
How to export data from SQL Server 2005 to MySQL
Throw Error In MySQL Trigger
Binary Data in MySQL