我在数据库中使用mysql存储过程,现在我希望能够将它与我的php代码一起使用,但我搜索的示例都没有显示出明确的方法。有人能告诉我为什么这不起作用吗?
<html>
<head>
<title>Add</title>
<link rel="stylesheet" type="text/css" href="main.css">
<?php include("navbar.php")?>
</head>
<body>
<?php
if(isset($_POST['submit'])) {
$link = mysqli_connect("localhost", "root", "", "test");
$firstname = $_POST['firstname'];
$lastname = $_POST['lastname'];
mysqli_query($link, "CALL AddUser($firstname, $lastname)");
}
?>
<form method="post" action="<?php echo $_SERVER['PHP_SELF']; ?>">
First Name:<input type="text" name="firstname" required>
Last Name:<input type="text" name="lastname" required>
<input type="submit" value="submit">
</form>
</body>
</html>
以下是存储过程
CREATE DEFINER=`root`@`localhost` PROCEDURE `AddUser`(IN in_first_name VARCHAR(100), IN in_last_name VARCHAR(100) )
BEGIN
INSERT INTO `users`(first_name, last_name) VALUES (in_first_name, in_last_name );
END
这是数据库test 中的表格
CREATE TABLE IF NOT EXISTS `users` (
`users_id` int(10) unsigned NOT NULL AUTO_INCREMENT,
`first_name` varchar(100) NOT NULL,
`last_name` varchar(100) NOT NULL,
PRIMARY KEY (`users_id`)
) ENGINE=InnoDB DEFAULT CHARSET=latin1 AUTO_INCREMENT=10 ;
--
--转储表users的数据
INSERT INTO `users` (`users_id`, `first_name`, `last_name`) VALUES
(1, 'Joey', 'Rivera'),
(2, 'John', 'Doe'),
(3, 'Cesar', 'Guerrero'),
(4, 'Maribel', 'Guerrero'),
(8, 'Marc', 'Jacobs');
mysqli_query($link, "CALL AddUser($firstname, $lastname)");
至
mysqli_query($link, "CALL AddUser('$firstname', '$lastname')");
^ ^ ^ ^
并添加至少一些基本的错误处理
$link = mysqli_connect("localhost", "root", "", "test");
if (mysqli_connect_errno()) {
echo "Connect failed: " . mysqli_connect_error();
exit();
}
if (!$mysqli_query("CALL AddUser('$firstname', '$lastname')")) {
echo "CALL failed: " . $mysqli_errno($link) . " - " . $mysqli_error($link);
exit();
}
附带说明:考虑学习和使用准备好的语句来插入查询字符串。
使用准备好的语句的代码版本可能看起来像
<?php
if (isset($_POST['submit'])) {
$firstname = $_POST['firstname'];
$lastname = $_POST['lastname'];
$link = new mysqli('localhost', 'root', '', 'test');
if (mysqli_connect_errno()) {
die('Connect failed: ' . mysqli_connect_error()); //TODO: a better error handling
}
$stmt = $link->prepare("CALL AddUser(?, ?)");
if (!$stmt) {
die('Prepare failed: ' . $link->error); //TODO: a better error handling
}
$stmt->bind_param('ss', $firstname, $lastname);
if(!$stmt->execute()) {
die('Execute failed: ' . $link->error); //TODO: a better error handling
}
}
?>
正如@MayurKukadiya所提到的,将name属性添加到您的输入中
<input type="submit" name='submit' value="submit">
u应该为提交按钮命名属性。。我希望这会有所帮助。
<input type="submit" name='submit' value="submit">
PDO是您的需要,请确保您启用了PDO-mysql扩展并安装了
<?php
$stmt = $dbh->prepare("CALL sp_returns_string(?)");
$stmt->bindParam(1, $return_value, PDO::PARAM_STR, 4000);
// call the stored procedure
$stmt->execute();
print "procedure returned $return_value'n";
?>
http://php.net/manual/en/pdo.prepared-statements.php