tags:

views:

43

answers:

4
+1  Q: 

Can't figure out what's wrong with my php/sql statement

So this is probably a dumb beginner question, but I've been looking at it and can't figure it out. A bit of background: just practicing making a web app, a form on page 1 takes in some values from the user, posts them to the next page which contains the code to connect to the DB and populate the relevant tables.

I establish the DB connection successfully, here's the code that contains the query:

$conn->query("SET NAMES 'utf9'");         

$query_str = "INSERT INTO 'qa'.'users' ('id', 'user_name','password' ,'email' ,'dob' ,'sx') VALUES (NULL, $username, $password, $email, $dob, $sx);";

$result = @$conn->query($query_str);

Here's the error that is returned:Insert query failed: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''qa'.'users' ('id', 'user_name' ,'password' ,'email' ,'dob' ,'s' at line 1

Thanks in advance!

A: 

Unless it's changed since I did MySQL in PHP, escape your db/column/table names with backticks (`), not apostrophes (').

JustABill  2010-05-13 04:44:48
if i use backticks, i get a Unknown column ... in 'field list' error
Olegious  2010-05-13 04:50:02
Can you give the specific error, please?
JustABill  2010-05-13 04:52:21
you know what, I tried it again, and it worked in myphpadmin. thanks!
Olegious  2010-05-13 04:53:37
the specific error is: "Insert query failed: Unknown column 'olegs' in 'field list'" "olegs" is one of the inputs that i attach to the $username variable, so not sure why it is telling me about a "olegs" column, the column should be "user_name"
Olegious  2010-05-13 05:00:53
i've narrowed the issue down to the way i use the variable names in the sql statement, i can take it from here, thank you.
Olegious  2010-05-13 05:09:22
+1  A: 

A good general trouble-shooting technique is to make the query work via another interface to the database. For example, phpMyAdmin. If it works there, you have some confidence going forward. or you may find how to fix your SQL. (phpMyAdmin is handy because it will convert your SQL into a ready-made string for PHP.)

Smandoli  2010-05-13 04:44:54
good idea- this is the error i get through phpmyadmin: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''qa'.'users' ('id', 'user_name','password' ,'email' ,'dob' ,'sx') VALUES (NULL, ' at line 1basically the same thing, right?
Olegious  2010-05-13 04:51:15
Heh heh ... not terribly helpful in itself, I suppose. But making repeated attempts is a lot easier than doing it through HTTP!
Smandoli  2010-05-13 05:12:21
A: 

You need to escape your column names with a backtick (`) instead of (')

You also need to properly escape the actual values you are inserting as well (use a single quote)

webdestroya  2010-05-13 04:49:31
A: 

OMG not a single right answer

$query_str = "
INSERT INTO `qa`.`users` (`id`, `user_name`,`password` ,`email` ,`dob` ,`sx`) 
VALUES (NULL, '$username', '$password', '$email', '$dob', '$sx')";

identifiers being quoted with backticks, while strings being quoted with apostrophes!

and I hope you have passed all your variables through mysql_real_escape string BEFORE putting it into query, i.e.:

$username = mysql_real_escape string($username);

and so on

Col. Shrapnel  2010-05-13 05:08:42

related questions

IDE suggestions: Eclipse IDE vs. Zend Studio ( confused )
MySQL/Apache Error in PHP MySQL query
Lightweight IDE for Linux
What PHP framework would you choose for a new application and why?
Why is my ternary expression not working?
How can I get at the matches when using preg_replace in PHP?
Mechanisms for tracking DB schema changes
Wordpress theme development offline tools
Using object property as default for method property
How can I get the authenticated user name under Apache using plain HTTP authentication and PHP?
Make XAMPP/Apache serve file outside of htdocs
How do you debug PHP scripts?
PHP Variables passed by value or by reference?
Best way to implement unit testing in PHP
Connect PHP to an AS/400
Best way to access Exchange using PHP?
PHP Session Security
How do I access a remote form in php?
What's the best way to generate a tag cloud from an array? (using h1 through h6 for sizing)
Apache/PHP: error_log per Virtual Host?
How do I track file downloads with apache/PHP
How would you access Object properties from within an object method?
Flat File Databases in PHP
Best way to allow plugins for a PHP application
Latest information on PHP upcoming releases