How should I transfer pdo qoute into query?

Question

Not sure what is the right syntax of the pdo->quote. php.net shows only "echo $stmt->quote($var)". But I don't need to "echo" this variable. How should I save the result and transfer it to request?

With the first string $stmt uncommented I receive bool(false). Without it all works just fine.

//$var1 = $this->_db->quote($var1);
$stmt = $this->_db->query("SELECT activation FROM users WHERE email = '$var1' LIMIT 1");

score 0 · Accepted Answer · answered Apr 25 '13 at 16:42

quote() adds it's own quotation marks, so remove them from the query.

$var1 = $this->_db->quote($var1);
$stmt = $this->_db->query("SELECT activation FROM users WHERE email = $var1 LIMIT 1");

Have you considered using prepared statements? http://www.php.net/manual/en/pdo.prepare.php

How should I transfer pdo qoute into query?

1 Answers1