update : 2015.11.03
php.shukuma.com

검색:
 
 
Insert array into table

pg_insert

(PHP 4 >= 4.3.0, PHP 5)

pg_insert Insert array into table

설명

mixed pg_insert ( resource $connection , string $table_name , array $assoc_array [, int $options = PGSQL_DML_EXEC ] )

pg_insert() inserts the values of assoc_array into the table specified by table_name. If options is specified, pg_convert() is applied to assoc_array with the specified options.

인수

connection

PostgreSQL database connection resource.

table_name

Name of the table into which to insert rows. The table table_name must at least have as many columns as assoc_array has elements.

assoc_array

An array whose keys are field names in the table table_name, and whose values are the values of those fields that are to be inserted.

options

Any number of PGSQL_CONV_OPTS, PGSQL_DML_NO_CONV, PGSQL_DML_ESCAPE, PGSQL_DML_EXEC, PGSQL_DML_ASYNC or PGSQL_DML_STRING combined. If PGSQL_DML_STRING is part of the options then query string is returned. When PGSQL_DML_NO_CONV or PGSQL_DML_ESCAPE is set, it does not call pg_convert() internally.

반환값

성공 시 TRUE를, 실패 시 FALSE를 반환합니다. Returns string if PGSQL_DML_STRING is passed via options.

예제

Example #1 pg_insert() example

<?php 
  $dbconn 
pg_connect('dbname=foo');
  
// This is safe, since $_POST is converted automatically
  
$res pg_insert($dbconn'post_log'$_POST);
  if (
$res) {
      echo 
"POST data is successfully logged\n";
  } else {
      echo 
"User must have sent wrong inputs\n";
  }
?>

변경점

버전 설명
5.6.0 No longer experimental. Added PGSQL_DML_ESCAPE constant, TRUE/FALSE and NULL data type support.
5.5.3/5.4.19 Direct SQL injection to table_name and Indirect SQL injection to identifiers are fixed.

참고

  • pg_convert() - Convert associative array values into suitable for SQL statement