Presentation is loading. Please wait.

Presentation is loading. Please wait.

Databases with PHP A quick introduction. Y’all know SQL and Databases  You put data in  You get data out  You can do processing on it very easily 

Published byCora Doyle Modified over 8 years ago

Similar presentations

Presentation on theme: "Databases with PHP A quick introduction. Y’all know SQL and Databases  You put data in  You get data out  You can do processing on it very easily "— Presentation transcript:

1 Databases with PHP A quick introduction

2 Y’all know SQL and Databases  You put data in  You get data out  You can do processing on it very easily  LIMIT, ORDER, WHERE, GROUP BY  It has a nice Structured Query Language  You’ve learned all of this before You’ve done PostgreSQL  MySQL doesn’t differ in SQL syntax  Slight differences when creating new users and selecting active databases

3 What is this lecture then?  How to convert your existing SQL knowledge into PHP  How to use that to make something interesting

4 Here’s stuff I prepared earlier  There is some PHP/HTML relating to the visual parts of the page. I will not cover that, unless there is time at the end  There is some CSS, again I’ll leave that to the end  The PHP relating to the logic is in a separate file, I will show you how to create that. Roadmap  Make a database  When people type into the box and hit enter we need to  Connect to the database  Insert the data into the table  When people view the page we need to  Connect to the database  Grab the last 25 comments, ordered by the time they are posted

5 How to create the database root@core:~# date Wed Mar 16 13:58:58 UTC 2011 root@core:~# mysql -uroot -p Enter password: Welcome to the MySQL monitor. Commands end with ; or \g. Your MySQL connection id is 45 Server version: 5.1.41-3ubuntu12 (Ubuntu) Type 'help;' or '\h' for help. Type '\c' to clear the current input statement. mysql> create database gw; Query OK, 1 row affected (0.01 sec) mysql> use gw; Database changed mysql> create table comments (id INT AUTO_INCREMENT PRIMARY KEY, time TIMESTAMP, val TEXT (255)); Query OK, 0 rows affected (0.03 sec) mysql> grant all on gw.* to 'gw'@'localhost' identified by 'somepassword'; Query OK, 0 rows affected (0.12 sec) mysql> quit; Bye root@core:~# date Wed Mar 16 13:59:34 UTC 2011 Delivery in 39 seconds or its free

6 Connect to the database from PHP  When we execute queries later, PHP needs to know where the database server is and how to log into it  If you only have one database connection (normal) you can forget about the returned connection handle  resource mysql_connect(“servername”,”username”,”password”);  This makes PHP remember that mysql calls must go through that connection  Automatically flushed and closed cleanly Select the correct database  You are now connected to the database server but not yet to your actual database  Need to choose the database (like “use gw;” when creating the database)  bool mysql_select_db(“databasename”);  Returns true on success, false otherwise

7 Execute arbitrary SQL  You know how to do everything else in SQL, reuse that knowledge!  resource mysql_query(“SQL query string”);  The returned value might be a boolean  If an error then false, if success but not a fetching type of query then true  Or it might be a handle to the result set  Which could be empty  You can then fetch individual rows  array mysql_fetch_assoc($myResultSet);  mysql_fetch_assoc will return false if there are no more rows  while($row = mysql_fetch_assoc($resultSet)) { //Per row code }  The ‘assoc’ part is for ‘associative array’. You access a column by its name like $row[“columnA”]

8 That’s all we need Any questions on SQL syntax? You should know how to do the following:  SELECT rows from a table WHERE they meet certain criteria  ORDER the returned rows  LIMIT the number of rows returned  GROUP BY is cool, but you probably won’t really need it for the project Are we missing anything?

9 YES! SECURITY  Barry and other people like him will have his way with your ponies if you are not careful  w3schools puts up a really insecure example in their tutorial, NEVER EVER DO THIS:

10 Yeah but all that protection stuff kills the mood  Not so, its quick and easy. You have one function which will magically create a locale specific super ultra protection filter and run it on your input:  $input = “Barry says \”;DROP DATABASE ponies;--”; $safe = mysql_real_escape_string($input);  It doesn’t even matter if your database server is CHINESE, it will connect to it and ask it which characters are dangerous  This is why its called _real_ (it doesn’t play around)  Always use it! Keep it in your wallet  Don’t use the old mysql_escape_string(); it has expired and will break when you need it most

11 OK, so back to the chat thing… index.php

12 And the part that talks to MySQL logic.php

13 Tada!  Head over to ten.xd-bx.net and abuse it  Did you know you can embed HTML and JavaScript into your post? You could actually do some pretty cool/nasty things  The annoying refresh every 30 seconds can only be fixed with a splash of AJAX, someone else is lecturing that

Download ppt "Databases with PHP A quick introduction. Y’all know SQL and Databases  You put data in  You get data out  You can do processing on it very easily "

Similar presentations

JQuery MessageBoard. Lets use jQuery and AJAX in combination with a database to update and retrieve information without refreshing the page. Here we will.

JQuery MessageBoard. Lets use jQuery and AJAX in combination with a database to update and retrieve information without refreshing the page. Here we will.
PHP II Interacting with Database Data. The whole idea of a database-driven website is to enable the content of the site to reside in a database, and to.

PHP II Interacting with Database Data. The whole idea of a database-driven website is to enable the content of the site to reside in a database, and to.
PHP Hypertext Preprocessor Information Systems 337 Prof. Harry Plantinga.

PHP Hypertext Preprocessor Information Systems 337 Prof. Harry Plantinga.
Keys, Referential Integrity and PHP One to Many on the Web.

Keys, Referential Integrity and PHP One to Many on the Web.
Introduction The concept of “SQL Injection”

Introduction The concept of “SQL Injection”
PHP and MySQL. Why Use a Database  Easy access to data  Simultaneous access by multiple users is handled properly  Security - easy to control access.

PHP and MySQL. Why Use a Database  Easy access to data  Simultaneous access by multiple users is handled properly  Security - easy to control access.
PHP and MySQL Web Development tMyn1 PHP and MySQL Web Development When you install PHP, you can select from a number of extensions. The MySQL support in.

PHP and MySQL Web Development tMyn1 PHP and MySQL Web Development When you install PHP, you can select from a number of extensions. The MySQL support in.
Website Development Working with MySQL. What you will achieve today! Connecting to mySql Creating tables in mySql Saving data on a server using mySql.

Website Development Working with MySQL. What you will achieve today! Connecting to mySql Creating tables in mySql Saving data on a server using mySql.
PHP & MySQL Mahak Arora Vivek Bangera. Outline How PHP works Basic scripting in PHP Forms in PHP(GET & POST Variables) SQL basics PHP and MySQL connection.

PHP & MySQL Mahak Arora Vivek Bangera. Outline How PHP works Basic scripting in PHP Forms in PHP(GET & POST Variables) SQL basics PHP and MySQL connection.
1 CS428 Web Engineering Lecture 23 MySQL Basics (PHP - VI)

1 CS428 Web Engineering Lecture 23 MySQL Basics (PHP - VI)
SJSU CS157B Dr. Lee1  2004 Jenny Mitchell Two Useful Tools You Can’t Live Without by Jenny Mitchell SJSU CS157B Section 1 09-21-04 PHP and MySQL.

SJSU CS157B Dr. Lee1  2004 Jenny Mitchell Two Useful Tools You Can’t Live Without by Jenny Mitchell SJSU CS157B Section PHP and MySQL.
Lecture 3 – Data Storage with XML+AJAX and MySQL+socket.io

Lecture 3 – Data Storage with XML+AJAX and MySQL+socket.io
1 Introduction to PHP. 2 What is this “PHP” thing? Official description: “PHP, which stands for PHP: Hypertext Preprocessor is a widely-used Open Source.

1 Introduction to PHP. 2 What is this “PHP” thing? Official description: “PHP, which stands for "PHP: Hypertext Preprocessor" is a widely-used Open Source.
SQL | PHP Tutorial at 8am. god, it’s early.. SQL intro There are many different versions of SQL available for usage. Oracle MySQL SQLite DB2 Mimer The.

SQL | PHP Tutorial at 8am. god, it’s early.. SQL intro There are many different versions of SQL available for usage. Oracle MySQL SQLite DB2 Mimer The.
Advanced Web 2012 Lecture 4 Sean Costain 2012. PHP Sean Costain 2012 What is PHP? PHP is a widely-used general-purpose scripting language that is especially.

Advanced Web 2012 Lecture 4 Sean Costain PHP Sean Costain 2012 What is PHP? PHP is a widely-used general-purpose scripting language that is especially.
MySQL in PHP – Page 1 of 17CSCI 2910 – Client/Server-Side Programming CSCI 2910 Client/Server-Side Programming Topic: MySQL in PHP Reading: Williams &

MySQL in PHP – Page 1 of 17CSCI 2910 – Client/Server-Side Programming CSCI 2910 Client/Server-Side Programming Topic: MySQL in PHP Reading: Williams &
INTERNET APPLICATION DEVELOPMENT For More visit:

INTERNET APPLICATION DEVELOPMENT For More visit:
Introduction to InfoSec – Recitation 7 Nir Krakowski (nirkrako at post.tau.ac.il) Itamar Gilad (itamargi at post.tau.ac.il)

Introduction to InfoSec – Recitation 7 Nir Krakowski (nirkrako at post.tau.ac.il) Itamar Gilad (itamargi at post.tau.ac.il)
CSCI 6962: Server-side Design and Programming Secure Web Programming.

CSCI 6962: Server-side Design and Programming Secure Web Programming.
Nic Shulver, Retrieving Stored Data Introduction This set of slides shows: The information source database structure The data.

Nic Shulver, Retrieving Stored Data Introduction This set of slides shows: The information source database structure The data.

Similar presentations

Ads by Google