pdo prepare and bind_param .strange behaviour

plasmotron

is it me or there's some bugs around the PDO mysql drivers and class ?

this returns -> TRUE , . everthing 's all right


$sql = 'INSERT INTO table values(null,:login,:pswd) ';

     try    {
        $stmt = db::get_conn()->prepare($sql);
        $stmt->bindParam(':login', $login);
        $stmt->bindParam(':pswd', $pswd);

$result = $stmt -> execute();
        }
        catch(PDOException $e)
        {
           $result ['pdo'] = $e->getMessage();
           $result ['sql'] = $stmt;

    }

    return $result ;
}

BUT ! this return error !!?
(SQLSTATE[HY093]: Invalid parameter number: parameter was not defined')


$sql = 'INSERT INTO table values(null,:login,:pswd) ';

     try    {
        $stmt = db::get_conn()->prepare($sql);


$result = $stmt -> execute(array($login,$pswd));
        }
        catch(PDOException $e)
        {
           $result ['pdo'] = $e->getMessage();
           $result ['sql'] = $stmt;

    }

    return $result ;
}

Any idea why passing var in an array to execute() differ from the binparam version ?

igorlopez

If you check out the PDO documentation you will find that in order to skip the bindParam you need to provide an array matching your prepared sql statement.
In your case where you have named parameters in the statement you need to have an array with those names as keys, i.e

$result = $stmt -> execute(array(':login' => $login, ':pswd' => $pswd));

or if you must use it the way you posted you need to replace the named parameters in the sql statement with ?, i.e

$sql = 'INSERT INTO table values(null, ?, ?) ';

See: PDOStatement->ececute

plasmotron

thank you ! I work too late ..