CONNECTION
//replace host, database, user, password
$dbh = new PDO("mysql:host=mysql.host.com;dbname=DATABASE", 'USER', 'PASSWORD');
SELECT
$stmt = $dbh->prepare("SELECT id, name FROM table");
$stmt->execute();
$result = $stmt->fetchAll();
foreach($result as $row) {
echo "$row[id]: $row[name]<br />";
}
SELECT WITH NAMED PARAMETER
$example = $_GET["example"];
$stmt = $dbh->prepare("SELECT id, name FROM table WHERE column = :value"); //value can be named whatever you'd like
$stmt->bindParam(":value", $example); //pass a variable to the named parameter
$stmt->execute();
$result = $stmt->fetchAll();
foreach($result as $row) {
echo "$row[id]: $row[name]<br />";
}
INSERT WITH NAMED PARAMETER
$firstname = $_GET["firstname"];
$lastname = $_GET["lastname"];
$stmt = $dbh->prepare("INSERT INTO `users` (`firstName`, `lastName`) VALUES (:firstname, :lastname)");
$stmt->bindParam(":firstname", $firstname);
$stmt->bindParam(":lastname", $lastname);
$stmt->execute();
UPDATE WITH NAMED PARAMETER
$date = date("Y-m-d H:i:s");
$id = $_GET["id"];
$stmt = $dbh->prepare('UPDATE `users` SET `lastLogin` = :lastLogin WHERE `id` = :id');
$stmt->bindParam(":lastLogin", $date);
$stmt->bindParam(":id", $id);
$stmt->execute();
