Oen sql command from Kevin Yank

runeveryday · March 17, 2010, 12:09pm



$sql = 'INSERT INTO joke SET
joketext="' . $joketext . '",
jokedate="today's date"';

i don’t understand why the joketext=“’ . $joketext . '”, use the single quote and the concatenation . i feel those are a surplus, use this is joketext="$joketext ", ok, but when i test it ,it’s show an error, anyone can tell me the reason.any tips would be appreciated.

r937 · March 17, 2010, 12:32pm

because you need some quotes in SQL to delimit strings

in mysql you can use either single or double quotes to delimit strings, but only single quotes are standard SQL

runeveryday · March 18, 2010, 12:46am

but about this line

joketext="' . $joketext . '",

.it’s use both single quotes and double quotes and one concatenation ,why ?thank you!

AlienDev · March 18, 2010, 12:49am

The single-quotes end the string and join it to whatever comes next ($joketext).

The SQL in the book is bad though. Better would be:


$sql = "INSERT INTO joke SET
joketext='{$joketext}',
jokedate='today's date'";

runeveryday · March 18, 2010, 12:58am

thanks for your reply,but i think the

jokedate=‘today’s date’
will not work, because there is a single quotes in today’s.

AlienDev · March 18, 2010, 1:03am

But you aren’t going to actually use the string “today’s date”, are you? (I seriously hope not…)

cranial_bore · March 18, 2010, 2:23am

runeveryday - this is what escaping data is for.
[fphp]mysql_real_escape_string[/fphp]

runeveryday · March 18, 2010, 6:16am

thanks for all you replies, but i am still not know why in

joketext="' . $joketext . '",

use the double quotes and one concatenation.

cools_sonu · March 18, 2010, 6:25am

When u were not using then what error msg u’d got ?

Read that message carefully and u’l come to know why single and double quotes are necessary.

cranial_bore · March 18, 2010, 6:32am

In that example the single quotes are part of the PHP used to create the SQL as a string. The double quotes are actually part of the SQL statement that gets sent to MySQL.


/* the single quotes are needed to wrap the string */
$animal = 'cat';

/* this string has double quotes as part of the string */
$quote = 'John said "blah" in response to the question';

The reason for the concatenation is so that the value of $joketext gets inserted into the query. Variables inside single quotes aren’t parsed, so without the concatenation you’d get $joketext appear literally in the DB instead of the actual joke text.

It could be rewritten like this:


$sql = "INSERT INTO joke SET joketext='$joketext', jokedate='2010-03-18'";

runeveryday · March 18, 2010, 8:15am

cranial-bore,GOT it,many thanks.

runeveryday · March 18, 2010, 8:22am

somebody said this

 $sql = "INSERT INTO joke SET joketext='{$joketext}', jokedate='2010-03-18'";

will be better, add a { }to the variable. is it right ?

hash · March 18, 2010, 8:24am

It’s not necessary in this case, read up on php strings for more info, there are lots of ways to do things.

cranial_bore · March 18, 2010, 2:31pm

It’s not necessary for a simple variable. (You can use it if you want, makes no difference).
When the curly braces are more useful is if you are referencing an object property, or an array value


$people[0]['name'] = 'John Doe';
$people[0]['job'] = 'Helicopter Pilot';
$people[1]['name'] = 'Helen Doe';
$people[1]['job'] = 'Horse Whisperer';

echo "{$people[1]['name']} is a good {$people[1]['job']}";

//Object oriented example
class Example
{
   protected $people = array('John', 'Bob', 'Ted');

   public function third_person() {
       return "The third person is {$this->people[2]}";
   }
}

$obj  = new Example();
echo $obj->third_person();