My SQL Noob at work

[phpforfun]

So I just started MySQL and SQL today, using SQLyog. Pretty cool stuff. Using a tutorial I found online, however im getting an error.. Here is the code.

PHP Code:

<?
    $host        =    'localhost';
    $user        =    'root';
    $pass        =    'password';
    $database    =    'roscripts';
    $connect = @mysql_connect ( $host, $user, $pass ) ;

    $sql = "SELECT * FROM `articles` WHERE `ID` = " . mysql_real_escape_string ( $_GET['ID'] );

    mysql_select_db ( $database, $connect );
    if ( @mysql_query ( $sql ) )
    {
        $query = mysql_query ( $sql );
        $row = mysql_fetch_assoc ( $query );

        echo $row['ID'] . '<br />' . $row['article_title'] . '<br />' . $row['article_content'];
    }
    else {
        die ( mysql_error () );
    }
?>

When I put that in the page, I get this error..

Quote:

You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '' at line 1

Whats the right suntax? I have the latest version of everything, I am using Apache2triad.

Thanks guys!

[phpforfun]

Anyone wanna take a shot?

[John]

PHP Code:

$sql = "SELECT * FROM `articles` WHERE `ID` = '" . mysql_real_escape_string ( $_GET['ID'] ) . "'"; 


If that doesn't work, remove the error suppression operator [ @ ]

[Jordan]

With MySQL I generally leave out most of the ` symbols:

PHP Code:

$sql = "SELECT * FROM articles WHERE ID= '" . mysql_real_escape_string ( $_GET['ID'] ) . "'"; 


If that doesn't work do

PHP Code:

echo $sql; 


right after that line. Then copy/paste that info into MySQL directly. You will generally get a more descriptive error (you can use PHPMyAdmin or MySQL from the console for this).

[phpforfun]

Now it doesnt show anything when I do any of the above :-\

[John]

I find the back ticks [ ` ] to be a good practice. Prior to using back ticks I had a problem with one of my SQL queries, which took me several hours to debug. The problem ended up being that one of the column names in my query was a reserved word, using the back ticks solved the problem. So thats why I find it a good practice...

[phpforfun]

How does a back tick solve it? Is it a substitute for something?

Go to this:

http://ffe.no-ip.org/mysql/

Selecting.php is the one were looking at. It now wont show.. anything

[John]

The back tick explicitly says "whats between me is a column name."


Have you removed the @ symbol yet?...

[phpforfun]

Quote:

Originally Posted by John

The back tick explicitly says "whats between me is a column name."


Have you removed the @ symbol yet?...

Yes sir.

PHP Code:

<?PHP
    $host        =    'localhost';
    $user        =    'root';
    $pass        =    'private1';
    $database    =    'roscripts';
    $connect = @mysql_connect ( $host, $user, $pass ) ;

    $sql = "SELECT * FROM `articles` WHERE `ID` = '" . mysql_real_escape_string ( $_GET['ID'] ) . "'";    

    mysql_select_db ( $database, $connect );
    if ( @mysql_query ( $sql ) )
    {
        $query = mysql_query ( $sql );
        $row = mysql_fetch_assoc ( $query );

        echo $row['ID'] . '<br />' . $row['article_title'] . '<br />' . $row['article_content'];
    }
    else {
        die ( mysql_error () );
    }
?>

Thats the code now, which will output nothing.

[phpforfun]

So then, what code do you guys use to echo whats in a db?