php实现增删

PHP 实现增删功能

在 PHP 中实现增删功能通常涉及数据库操作，以下分别介绍如何实现增加（插入）和删除数据的方法。

增加数据

使用 MySQLi 或 PDO 扩展与数据库交互，以下是一个插入数据的示例：

<?php
$servername = "localhost";
$username = "username";
$password = "password";
$dbname = "database";

// 创建连接
$conn = new mysqli($servername, $username, $password, $dbname);

// 检查连接
if ($conn->connect_error) {
    die("连接失败: " . $conn->connect_error);
}

// 准备 SQL 插入语句
$sql = "INSERT INTO users (name, email) VALUES ('John Doe', 'john@example.com')";

// 执行插入操作
if ($conn->query($sql) === TRUE) {
    echo "新记录插入成功";
} else {
    echo "错误: " . $sql . "<br>" . $conn->error;
}

// 关闭连接
$conn->close();
?>

使用 PDO 的插入示例：

<?php
$servername = "localhost";
$username = "username";
$password = "password";
$dbname = "database";

try {
    $conn = new PDO("mysql:host=$servername;dbname=$dbname", $username, $password);
    $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);

    $sql = "INSERT INTO users (name, email) VALUES ('Jane Doe', 'jane@example.com')";
    $conn->exec($sql);
    echo "新记录插入成功";
} catch(PDOException $e) {
    echo "错误: " . $e->getMessage();
}

$conn = null;
?>

删除数据

删除数据需要指定条件，以下是一个删除记录的示例：

<?php
$servername = "localhost";
$username = "username";
$password = "password";
$dbname = "database";

// 创建连接
$conn = new mysqli($servername, $username, $password, $dbname);

// 检查连接
if ($conn->connect_error) {
    die("连接失败: " . $conn->connect_error);
}

// 准备 SQL 删除语句
$sql = "DELETE FROM users WHERE id=1";

// 执行删除操作
if ($conn->query($sql) === TRUE) {
    echo "记录删除成功";
} else {
    echo "错误: " . $sql . "<br>" . $conn->error;
}

// 关闭连接
$conn->close();
?>

使用 PDO 的删除示例：

<?php
$servername = "localhost";
$username = "username";
$password = "password";
$dbname = "database";

try {
    $conn = new PDO("mysql:host=$servername;dbname=$dbname", $username, $password);
    $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);

    $sql = "DELETE FROM users WHERE id=2";
    $conn->exec($sql);
    echo "记录删除成功";
} catch(PDOException $e) {
    echo "错误: " . $e->getMessage();
}

$conn = null;
?>

安全注意事项

为了防止 SQL 注入攻击，应使用预处理语句。以下是使用 MySQLi 预处理语句的插入示例：

<?php
$servername = "localhost";
$username = "username";
$password = "password";
$dbname = "database";

$conn = new mysqli($servername, $username, $password, $dbname);

if ($conn->connect_error) {
    die("连接失败: " . $conn->connect_error);
}

$stmt = $conn->prepare("INSERT INTO users (name, email) VALUES (?, ?)");
$stmt->bind_param("ss", $name, $email);

$name = "John Smith";
$email = "john.smith@example.com";
$stmt->execute();

echo "新记录插入成功";

$stmt->close();
$conn->close();
?>

PDO 预处理语句示例：

<?php
$servername = "localhost";
$username = "username";
$password = "password";
$dbname = "database";

try {
    $conn = new PDO("mysql:host=$servername;dbname=$dbname", $username, $password);
    $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);

    $stmt = $conn->prepare("INSERT INTO users (name, email) VALUES (:name, :email)");
    $stmt->bindParam(':name', $name);
    $stmt->bindParam(':email', $email);

    $name = "Jane Smith";
    $email = "jane.smith@example.com";
    $stmt->execute();

    echo "新记录插入成功";
} catch(PDOException $e) {
    echo "错误: " . $e->getMessage();
}

$conn = null;
?>

总结

通过 MySQLi 或 PDO 扩展可以实现 PHP 的增删功能。预处理语句能有效提高安全性，防止 SQL 注入。根据项目需求选择合适的数据库操作方式。