admin管理员组文章数量:1122832
Is it possible to create a table with the wpdb::prepare function?
I read the documentation and tried to find examples but there where none that helped me.
Even creating a table with prepare doesn't give me any useful examples on Google.
Currently I'm creating my table like this:
public function createTableFromFields( $tablename, $fields ) {
//
$wpdb = $this->db;
$tablename = $wpdb->prefix . $tablename;
$sql = 'CREATE TABLE IF NOT EXISTS ' . $tablename . ' (id INT(6) UNSIGNED
AUTO_INCREMENT PRIMARY KEY';
foreach ( $fields as $field ) {
$sql .= ", $field TEXT";
}
$sql .= ')';
$result = $wpdb->query( $sql );
return $result;
}
But I learned that just using
$wpdb->query($sql)
is unsafe and that you should rather do it with
$wpdb->query(prepare($sql, $args).
So what do I put in $args here and what would be the SQL code then using the query format strings?
Is it possible to create a table with the wpdb::prepare function?
I read the documentation and tried to find examples but there where none that helped me.
Even creating a table with prepare doesn't give me any useful examples on Google.
Currently I'm creating my table like this:
public function createTableFromFields( $tablename, $fields ) {
//
$wpdb = $this->db;
$tablename = $wpdb->prefix . $tablename;
$sql = 'CREATE TABLE IF NOT EXISTS ' . $tablename . ' (id INT(6) UNSIGNED
AUTO_INCREMENT PRIMARY KEY';
foreach ( $fields as $field ) {
$sql .= ", $field TEXT";
}
$sql .= ')';
$result = $wpdb->query( $sql );
return $result;
}
But I learned that just using
$wpdb->query($sql)
is unsafe and that you should rather do it with
$wpdb->query(prepare($sql, $args).
So what do I put in $args here and what would be the SQL code then using the query format strings?
- You have to add '%s' inside $sql where $tablename took and pass $wpdb->query(prepare($sql, $tablename , $field). What is iniside foreach loop $fields? – Sonali Commented Mar 2, 2017 at 5:35
1 Answer
Reset to default 0I tried this in local, and I think you have multiple fields inside $fields so I've added them in array.
Just look at the code below; it works fine as tested:
add_action('your_hook', 'createTableFromFields');
function createTableFromFields($tablename)
{
$wpdb = $this->db;
$tablename = $wpdb->prefix . $tablename;
$fields = array('PersonID','LastName');
$sql = 'CREATE TABLE IF NOT EXISTS %s (id INT(6) UNSIGNED
AUTO_INCREMENT PRIMARY KEY';
$test = array();
foreach ($fields as $field) {
$test[] = $field." TEXT";
}
$t = implode(",", $test);
$sql .= ",%s)";
$result = $wpdb->query($wpdb->prepare(sprintf($sql, $tablename, $t)));
return $result;
}
本文标签: databaseCreate table from array with prepare
版权声明:本文标题:database - Create table from array with prepare 内容由网友自发贡献,该文观点仅代表作者本人, 转载请联系作者并注明出处:http://www.betaflare.com/web/1736284174a1927191.html, 本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如发现本站有涉嫌抄袭侵权/违法违规的内容,一经查实,本站将立刻删除。
发表评论