|
|
| Database: |
Any
|
| Participants: |
Eloy Lafuente (stronk7) and Petr Skoda
|
| Security Level: |
None
|
| Resolved date: |
26/May/08
|
| Affected Branches: |
MOODLE_20_STABLE
|
| Fixed Branches: |
MOODLE_20_STABLE
|
|
While looking at code (accesslib.php), I've detected a lot of uses of IN() statements where the list of values continues being passed as comma-separated string.
While it works... ideally all them should be converted to proper ? placeholders, correct?
Pasting here the function used in Mahara (suggested by Penny):
/**
* function to convert an array to
* an array of placeholders (?)
* with the right number of values
*
* @param array $array input array
*/
function db_array_to_ph($array) {
return array_pad(array(), count($array), '?');
}
note it's enough for us, needing to support :named parameters. And also note it returns an array and should return one string directly.
Not checked if we have implemented this our way (it sounds to me that yes).
Ciao :-)
|
|
Description
|
While looking at code (accesslib.php), I've detected a lot of uses of IN() statements where the list of values continues being passed as comma-separated string.
While it works... ideally all them should be converted to proper ? placeholders, correct?
Pasting here the function used in Mahara (suggested by Penny):
/**
* function to convert an array to
* an array of placeholders (?)
* with the right number of values
*
* @param array $array input array
*/
function db_array_to_ph($array) {
return array_pad(array(), count($array), '?');
}
note it's enough for us, needing to support :named parameters. And also note it returns an array and should return one string directly.
Not checked if we have implemented this our way (it sounds to me that yes).
Ciao :-) |
Show » |
made changes - 26/May/08 03:59 AM
| Field |
Original Value |
New Value |
|
Resolution
|
|
Fixed
[ 1
]
|
|
Status
|
Open
[ 1
]
|
Resolved
[ 5
]
|
|
Sub-task
Resolved
Minor
