تقييمات الطلاب
( 5 من 5 )
١ تقييمات
فيديو شرح PHP PDO Tutorial Part 1 - Prepared Statements - SQL Injection - Full PHP 8 Tutorial ضمن كورس PHP Native شرح قناة Program With Gio، الفديو رقم 64 مجانى معتمد اونلاين
In this lesson, you will learn how to connect to the database from PHP using PHP Data Objects or in short PDO. PDO provides data access layer abstraction where common methods can be used to interact with different databases like MySQL, SQLite, and so on. You will learn about prepared statements, what SQL injection is & how it works, how to prevent SQL injection, learn about the difference between binding params by value or by reference, the difference between placeholders & named parameters, emulated prepares & so on.
NOTE: If you have concerns/questions about 15:28 please watch the beginning of Part 2 of the PDO lesson, I address & explain there. This is just a debug query & to save an extra line I decided to pass an integer directly to the query. I don't recommend you do that, even though this particular example has no SQL Injection vulnerability, someone might make a mistake & introduce the vulnerability. https://www.youtube.com/watch?ve6yLUvpcOZo
SOME OF THE WAYS YOU CAN SUPPORT THE CHANNEL
Smash the like button
Subscribe to the channel & turn the notifications on
Post comments, any feedback is greatly appreciated
Become a Patreon: https://www.patreon.com/programwithgio
THANK YOU!
LESSON 2.30
Course Outline - https://github.com/ggelashvili/learnphptherightway-outline
Course Playlist - https://www.youtube.com/playlist?listPLr3d3QYzkw2xabQRUpcZ_IBk9W50M9pe-
RESOURCES
https://www.php.net/manual/en/book.pdo.php
https://www.php.net/manual/en/pdo.connections.php
https://www.php.net/manual/en/pdo.error-handling.php
https://www.php.net/manual/en/class.pdo.php
https://www.php.net/manual/en/class.pdostatement.php
https://www.php.net/manual/en/pdo.constants.php
https://www.php.net/manual/en/ref.pdo-mysql.php
https://github.com/php/php-src/blob/master/ext/pdo/pdo_stmt.c#L319
CHAPTERS
00:00 - Intro
01:12 - Install/enable PDO MySQL
02:45 - PDO connection
05:52 - Error modes
06:34 - Run queries & fetch data
07:36 - Fetch modes
09:14 - Prepared statements & SQL injection
10:12 - SQL injection example
13:43 - Placeholders, named parameters & the difference between them
18:03 - Bind parameters using bindValue & bindParam
22:18 - Emulated prepares