0

我们使用 zend 框架和教义数据库。现在我的问题是我想搜索一个字符串(例如:testin'g)一个带有“单引号”的字符串。Doctrine 查询无法检索带有连接的查询的数据,并且可以在没有连接的普通查询中正常工作。

我的方法是

public function getNewsListGrid($campid,$currentPage,$resultsPerPage,$quickSearchType,$queryv,$sortName,$sortOrder,$letterPressed)
{
    $query = new Doctrine_Query();
    $whereCond ='';
    $where='eng.id='.$campid;
    $select='';
    $search = '';

    if($letterPressed == 'All')
    {
        $where .="";
    }
    else if($letterPressed == 'Radian6')
    {
        $where .=" AND c.news_type = 1";
    }
    else if($letterPressed == 'Google News')
    {
        $where .=" AND c.news_type = 3";
    }
    else if($letterPressed == 'Google Blogs')
    {
        $where .=" AND c.news_type = 4";
    }
    else if($letterPressed == 'Hide Twitter')
    {
        $where .=" AND c.url NOT LIKE '%twitter.com%'";
    }
    else if($letterPressed == 'Hide Facebook')
    {
        $where .=" AND c.url NOT LIKE '%facebook.com%'";
    }
    else if($letterPressed == 'Hide Facebook-twitter')
    {
        $where .=" AND c.url NOT LIKE '%twitter.com%' AND c.url NOT LIKE '%facebook.com%'";
    }
    else if($letterPressed == 'Show Twitter')
    {
        $where .=" AND c.url LIKE '%twitter.com%'";
    }
    else if($letterPressed == 'Show Facebook')
    {
        $where .=" AND c.url LIKE '%facebook.com%'";
    }
    else if($letterPressed == 'show Facebook-twitter')
    {
        $where .=" AND c.url  LIKE '%twitter.com%' OR c.url LIKE '%facebook.com%'";
    }


    if($queryv!='' && (trim($letterPressed) != 'Law' && trim($letterPressed) != 'Ls Translate')){

        $search = ' c.title like "%'.mysql_real_escape_string($queryv).'%" ';
    }

    $select='c.id, c.campaign_id, c.title as title, c.domain, c.news_type,c.url, c.active, c.article_date, c.created_date, c.modified_date, t.language_id, t.tr_translated_date, t.tr_translated_by, t.translation_state, t.tr_title, t.raw_title';
    if(trim($letterPressed) == 'Original')
    {
        $select='c.id, c.campaign_id, c.title as title, c.domain, c.news_type,c.url, c.active, c.article_date, c.created_date, c.modified_date, t.language_id, t.tr_translated_date, t.tr_translated_by, t.translation_state';
    }
    if(trim($letterPressed) == 'Law')
    {
        $select='c.id, c.campaign_id, c.domain, c.news_type,c.url, c.active,c.article_date, c.created_date, c.modified_date, t.raw_title as title, t.language_id, t.tr_translated_date, t.tr_translated_by, t.translation_state';
        if($queryv!='')
            $search = ' t.raw_title like "%'.mysql_real_escape_string($queryv).'%" ';
    }
    if(trim($letterPressed) == 'Ls Translate')
    {
        $select='c.id, c.campaign_id, c.domain, c.news_type,c.url, c.active, c.article_date, c.created_date, c.modified_date, t.tr_title as title, t.language_id, t.tr_translated_date, t.tr_translated_by, t.translation_state';
        $where .=" AND t.translation_state = 1";
        if($queryv!='')
            $search = ' t.tr_title like "%'.mysql_real_escape_string($queryv).'%" ';
    }
    $whereCond.=$where;  

    $query->select($select)
          ->from('News c')
          ->leftJoin('c.TranslatedNews t')
          ->leftJoin('c.Campaigns eng')
           ->where($whereCond)
           ->addWhere('eng.tr_language_id=t.language_id')
           ->orderBy('c.'.$sortName. ' ' . $sortOrder)
          ->groupBy('c.title')
          ->addGroupBy('c.url');
        if(!empty($search))
            $query->addWhere($search);
         //echo $query->getSqlQuery();exit;
      /*
                          here when i output query and run in any query browser it works fine.
      */
           $pager = new Doctrine_Pager($query,$currentPage, $resultsPerPage);// here it fails to retrive data

    return $pager;//print_r($pager);exit;
4

5 回答 5

1

而不是 addWhere 尝试使用 andWhere()

于 2011-05-11T09:27:00.503 回答
0

这里是连接示例

$q = Doctrine_Query::create()
                                    ->from('TransferRequest t')
                                    ->leftJoin('t.Employee e ON t.emp_number = e.emp_number')
                                    ->leftJoin('e.CompanyStructure c ON e.work_station = c.id')
                                    ->where("c.title LIKE ?", "%{$cond}%");
于 2011-05-11T09:38:58.333 回答
0

我用过这样的例子

 $q = Doctrine_Query::create()
                            ->select('t.*')
                            ->from('TransferReason t');
            if ($searchValue != "") {
                $q->where($feildName.' LIKE ?', '%' . trim($searchValue) . '%');
            }
            $q->orderBy($orderField . ' ' . $orderBy);
于 2011-05-11T09:31:34.933 回答
0

教义处理内部逃逸。使用如下查询:

$q = Doctrine_Query::create()->from('MyTable m')->where('m.column = ?', '?´## \'´^#11 " dfvü:?=._ßß?(%%/');

并且字符将被转义以对您的数据库安全。

于 2011-05-11T10:51:24.380 回答
0

加入期间可能会出现问题,因为我总是这样写:

$query->select($select)
      ->from('News', 'c')
      ->leftJoin('c.TranslatedNews', 't')
      ->leftJoin('c.Campaigns', 'eng')
       ->where($whereCond)
       ->andWhere('eng.tr_language_id=t.language_id')
       ->orderBy('c.'.$sortName. ' ' . $sortOrder)
      ->groupBy('c.title, c.url');
    if(!empty($search))
        $query->addWhere($search);

我找不到 $sortName 和 $sortOrder 所以你可能缺少一些变量。

我建议对 $where 使用 case 而不是许多 if (更少的代码行 :))

于 2016-09-06T07:46:15.837 回答