php - What does a colon before a literal in an SQL statement mean?

Question

Welcome To Ask or Share your Answers For Others

php - What does a colon before a literal in an SQL statement mean?

asked Oct 24, 2021 in Technique[技术] by 深蓝 (71.8m points)

php - What does a colon before a literal in an SQL statement mean?

What does it mean to use ":" before a variable ?

For example, :userId in this code:

public function removeUser($userId)
{
 $command = Yii::app()->db->createCommand();
 $command->delete(
 'tbl_project_user_assignment',
 'user_id=:userId AND project_id=:projectId',
 array(':userId'=>$userId,':projectId'=>$this->id));
}

This is PHP,MySQL code in Yii framework.

See Question&Answers more detail:os

与恶龙缠斗过久,自身亦成为恶龙；凝视深渊过久,深渊将回以凝视…

1 Answer

深蓝 · Answer 1 · 2021-10-23T20:03:25+0000

The colon is a common character that indicates a placeholder for a variable value in a SQL statement. In this case, the those placeholders are getting replaced by the value of userId and project_id at runtime. This is great for avoiding SQL injection vulnerabilities.

Categories

php - What does a colon before a literal in an SQL statement mean?

php - What does a colon before a literal in an SQL statement mean?

Please log in or register to add a comment.

Please log in or register to answer this question.

1 Answer

Please log in or register to add a comment.

Just Browsing Browsing

Most popular tags