我编写了一个带有查询函数的pdo包装器类,可以在执行前自动获取数组并将值绑定到语句。
public function query($query, $sprints = NULL)
{
// Add query to the last query and benchmark
$bench['query'] = $query;
// Prepare the statement
$this->result = $this->pdo->prepare($query);
// Process our sprints and bind parameters
if(is_array($sprints))
{
// Bind our parameters
foreach($sprints as $key => $value)
{
// if we are using "?'s", then we up the keys +1
if(is_int($key)) ++$key;
// Bid the param based on its type
if(is_int($value))
{
// Bind the param
$this->result->bindParam($key, $value, 'PDO::PARAM_INT);
$bench['bound'][$key] = $value;
}
else
{
// Bind the param
$this->result->bindParam($key, $value, 'PDO::PARAM_STR, strlen($value));
$bench['bound'][$key] = $value;
}
}
}
// Time, and process our query
$start = microtime(true);
try {
$this->result->execute();
}
catch ('PDOException $e) {
// show error
}
$end = microtime(true);
// Get our benchmark time
$bench['time'] = round($end - $start, 5);
// Get our number of rows
$this->num_rows = $this->result->rowCount();
// Add the query to the list of queries
$this->queries[] = $bench;
// Return
return $this;
}
问题是,在Insert操作中,它用最后一个绑定参数替换了所有的?下面是查询和结果:
INSERT INTO sessions(`token`,`ip_address`,`last_seen`,`user_data`) VALUES (?, ?, ?, ?)
绑定参数为:
[bound] => Array ( [1] => test1 [2] => 0.0.0.0 [3] => test3 [4] => test4 )
在数据库中的结果是,所有4列都被test4填充。有人知道它为什么这样做吗?
不知道你有什么问题,但为什么不把它改成
$this->result = $this->pdo->prepare($query);
$this->result->execute($sprints);
使用bindValue,而不是bindParam
<?php
if ( count( $this->_params ) > 0 )
{
foreach ( $this->_params as &$param )
{
$statement->bindValue( ":{$param->name}", $param->value, $param->type );
}
}