Ahmed Swilam, profile picture
Uploaded byAhmed Swilam
PPTX, PDF2,107 views

Class 8 - Database Programming

The document provides an outline of key concepts for database programming with MySQL. It discusses MySQL data types, the data definition language (DDL) for defining databases and tables, the data manipulation language (DML) for querying and manipulating data using SQL statements like SELECT, INSERT, UPDATE, DELETE. It also covers MySQL clauses like WHERE, ORDER BY, LIMIT, and joins for retrieving data from multiple tables. The document demonstrates how to connect to and query a MySQL database using PHP with examples of prepared statements. It proposes a course project and assignment to apply the concepts by building a basic application.

Technology
Related topics:
Web Development

Embed presentation

Downloaded 151 times
Database Programming
Outline • MySQL • How it works • Data Types • Data Definition Language • Data Manipulation Language • MySQL Comments • Where clause • Comparison Operators • ORDER Clause • LIMIT Clause • Escaping Characters • MySQL Joins • Using MySQL in PHP • Methods to use • Connecting to a database • Querying a database • Exercise • Exercise Solution • Prepared Statements • Tips and Tricks • Resources • Course Project • Assignment
MySQL MySQL is a Relational Database Management System (RDBMS) which stores data in a structured way ( in tables ). It allows for retrieving data using Structured Query Language (SQL). MySQL Server Web Server ( Apache with PHP ) Web Browser Request Query Resultset Response
How it works How tables look like ? id name salary job_title 1 Ahmed 100 Developer 2 Mohamed 200 Doctor 3 Sara 300 Engineer 4 Marwa 400 Designer
How it works • In MySQL, we can have multiple databases, every database has an unlimited amount of tables. • A table holds data about some entity ( person, employee, etc ). • The table consists of number of columns, each column can have a data type ( char, int, float, etc… )
Data Types Size Name Range Example 1 TINYINT -128 TO 127 [0 to 255 if UNSIGNED] 10 2 SMALLINT -32,768 to 32,767 [0 to 65,535] 30000 3 MEDIUMINT -8,388,608 to 8,388,607 [0 to 16,777,215] 8000000 4 INT -/+2.147E+9 [0 to 4.294E+9] 80000000 8 BIGINT -/+9.223E+18 [0 to 18.45E+18] 80000000000 4 FLOAT p=0-24 4.333333 8 DOUBLE Min=+/-2.225E-308 Max=+/-1.798E+308 .000000000000000000 003 arbitrary DECIMAL[(M,[D])] Stored as string Max Range = DOUBLE range33333.4444 M CHAR(M) M=0-255 Characters, FIXED. Right padded with spaces. Hello There M VARCHAR(M) M=0-65,535 Characters M=0-255 <v5.0.3 Hello There
Data Types Size Name Range Example arbitrary TINYTEXT 0-255 Characters Hello There arbitrary TEXT 0-65,535 Char's Hello There arbitrary MEDIUMTEXT 0-16,777,215 Char's Hello There arbitrary LONGTEXT 0-4,294,967,295 Char's Hello There arbitrary BINARY[(M)] M=0-255 bytes, FIXED. arbitrary VARBINARY(M) 0-65,535 bytes M=0-255 <v5.0.3 arbitrary TINYBLOB 0-255 bytes arbitrary BLOB 0-65,535 bytes arbitrary MEDIUMBLOB 0-16,777,215 bytes arbitrary LONGBLOB 0-4,294,967,295 bytes 3 DATE "1000-01-01" - "9999-12- 31" 2010-01-01 8 DATETIME "1000-01-01 00:00:00" - "9999-12-31 23:59:59" 2010-01-01 10:12:01 3 TIME "-838:59:59" - "838:59:59" 10:12:01 4 TIMESTAMP 19700101000000 - 2037+ 19700101000000
Data Definition Language DDL in the language MySQL use to define its data structures ( databases and tables ). Example : CREATE TABLE employees ( id INT PRIMARY KEY, first_name CHAR(50) NULL, last_name CHAR(75) NOT NULL, salary INT NOT NULL DEFAULT 0, dateofbirth DATE NULL );
Data Definition Language Altering tables: Adding or removing columns or changing the data types of columns. Examples: ALTER TABLE employees ADD salary INT(11); ALTER TABLE employees MODIFY salary FLOAT(10,5); ALTER TABLE employees DROP salary;
Data Definition Language Removing a table: DROP table employees Removing a database: DROP DATABASE db_name;
Data Manipulation Language DML is the language used by MySQL to manipulate data ( select, insert, update, delete ) SELECT statement: It is used to get data from a table. Example : SELECT * FROM employees The previous statement should select all the data from the employees table. SELECT first_name FROM employees This should return the column “first_name”
Data Manipulation Language INSERT statements They are used to insert a new row into a table. Examples: INSERT INTO employees SET id=1, first_name='John', last_name='Steve', dateofbirth = '1970-01-01‘ INSERT INTO employees (id, first_name, last_name, dateofbirth ) values ( '2', ‘John', 'Steve', '1970-01-01' )
Data Manipulation Language UPDATE statements These statements are used to update (change) data. Example: UPDATE employees SET first_name = ‘Mohamed’ This will update all the rows in the employees table setting the “first_name” to “Mohamed”
Data Manipulation Language DELETE statements These statements are used delete rows from a table. Example: DELETE FROM employees; This will delete all rows from employees table.
MySQL Comments Just like any other programming language, MySQL has ways to comment code. 1. -- one line comment 2. # one line comment 3. /* Multi Line Comment */
Where clause Where clauses are used to restrict the operations to a limited number of rows (the rows the satisfy this condition). Examples: SELECT * FROM employees WHERE first_name = ‘Mohamed’ DELETE FROM employees WHERE first_name = ‘John’ Update employees SET first_name = ‘Mohamed’ WHERE last_name = ‘Ahmed’
Comparison Operators Operator Description = Equals != Not Equals <> Not Equals >= Greater than or equal <= Less than or equal IS NULL True if the field is not null, false otherwise IS NOT NULL True if the field is null, false otherwise BETWEEN … AND … Checks if the value is between the specified numbers NOT BETWEEN … AND … Checks if the value is not between the specified numbers IN ( …, …, …, ) Checks if the value is in the specified list NOT IN Checks if the value is not in the specified list LIKE Checks if the value is like the specified string. NOT LIKE Checks if the value is not like the specified string. See next slide
Comparison Operators Examples SELECT * FROM employees WHERE salary <= 20 SELECT * FROM employees WHERE salary BETWEEN 10 AND 20 SELECT first_name FROM employees WHERE last_name LIKE ‘%ham%’ # percentage ‘%’ matches zero or more characters SELECT * FROM employees WHERE first_name NOT LIKE ‘__ham__’ # underscore matches 1 character SELECT * FROM employees WHERE salary IN ( 10, 20, 30 )
ORDER Clause ORDER clauses are used to order the result set. Examples: SELECT * FROM employees ORDER BY first_name ASC # ASC = ascendingly SELECT * FROM employees ORDER BY last_name DESC # DESC = descendingly
LIMIT Clause Limit clauses are used to limit the number of rows in a result set. Examples: SELECT * FROM employees LIMIT 1 # gets only the first row SELECT * FROM employees LIMIT 1 , 2 # gets 2 rows starting from the first row ( it gets the second and third rows )
Escaping Characters MySQL is similar to PHP when escaping characters : SELECT * FROM employees WHERE first_name = ‘That’s me’ SELECT * FROM employees WHERE first_name = “That”s me” But it adds another method of escaping : SELECT * FROM employees WHERE first_name = ‘That’’s me’ SELECT * FROM employees WHERE first_name = “That””s me”
MySQL Joins MySQL joins allow us to get data from multiple tables in the same query. Suppose we have the following tables: id name salary job_title 1 Ahmed 100 Developer 2 Mohamed 200 Doctor 3 Sara 300 Engineer 4 Marwa 400 Designer id model CC employee_id 1 BMW 1600 1 2 Hyundai 1600 2 3 Honda 1800 3 4 Fiat 1600 4 Employees table Cars Table
MySQL Joins The previous tables are employees and cars tables. Every car has an owner which is an employee. If we need to get data from these 2 tables, we will need to join them like the following : SELECT employees.name, cars.model FROM employees, cars WHERE employee.id = cars.id name model Ahmed BMW Mohamed Hyundai Sara Honda Marwa Fiat Result set
Using MySQL in PHP To achieve dynamism, a connection between a language and database is essential. PHP has a great MySQL support. There are various methods/ approaches that we could use to connect to MySQL in PHP.
Methods to use We have 3 methods of code styles that we can use to connect to MySQL in PHP. 1- Procedural approach. 2- MySQLi approach. 3- PDO ( PHP Data Objects ) approach. We Will user PDO because it is OOP and it supports named parameters and exceptions plus it has a good abstraction model that supports many drivers.
Connecting to database <?php $dsn = 'mysql:dbname=testdb;host=127.0.0.1'; $user = 'dbuser'; $password = 'dbpass'; try { $connection = new PDO($dsn, $user, $password); } catch (PDOException $e) { echo 'Connection failed: ' . $e->getMessage(); } ?>
Querying a database Here we will need to display the last name of the people with first_name = ‘Mohamed’. <?php $sql = "SELECT * FROM employees WHERE first_name = 'Mohamed'"; $result = $connection->query($sql); foreach ($result as $row) { print $row['last_name'] . "<br/>"; } ?>
Querying a database Inserting a new row into employees table : <?php $sql = “INSERT INTO employees SET first_name = ‘Ahmed’, last_name = ‘Gamal’, salary = 300"; $connection->query($sql); ?>
Querying a database Getting the number of rows in the result set: <?php $sql = "SELECT * FROM employees WHERE first_name = 'Mohamed'"; $result = $connection->query($sql); echo “Number of rows : “ . $result->rowCount(); ?>
Exercise Write a PHP application the inserts a new employee into the ‘employees’ table. There should be a form that looks like the following wireframe :
Exercise Solution We will have a script named “form.php” with the following HTML: <html> <body> <form action="add.php" method="post" > <ul style="list-style-type: none;"> <li><label for="first_name">First name</label> <input type="text" name="first_name" id="first_name" /> </li> <li><label for="last_name">Last name</label> <input type="text" name="last_name" id="last_name" /> </li> <li><label for="salary">Salary</label> <input type="text" name="salary" id="salary" /> </li> <li><label for="dateofbirth">Date of birth</label> <input type="text" name="dateofbirth" id="dateofbirth" /> </li> <li><input type="submit" name="submit" value="submit" /></li> </ul> </form> </body> </html>
Exercise Solution The other script is called “add.php” which contains : <?php $dsn = 'mysql:dbname=testdb;host=127.0.0.1'; $user = 'dbuser'; $password = 'dbpass'; try { $connection = new PDO($dsn, $user, $password); $sql = "INSERT INTO employees SET first_name = '" . $connection->quote($_POST['first_name']) . "', last_name = '" . $connection->quote($_POST['last_name']) . "', salary = " . $connection->quote($_POST['salary']) . ", dateofbirth = '" . $connection->quote($_POST['dateofbirth']) . "'"; $connection->query($sql); echo "Record has been added."; } catch (PDOException $e) { echo 'Connection failed: ' . $e->getMessage(); } ?>
Escaping values passed to MySQL It is advised that any values sent to MySQL should be escaped using the function called “quote” (like the previous example). In addition to preventing syntax errors in SQL statements, it is a top security concern ( google “SQL injection”, for more information about this type of security issue). PDO::quote($str);
Prepared statements Prepared statements are the ability to set up a statement once, and then execute it many times with different parameters. Example : SELECT * FROM employees WHERE first_name = ? SELECT * FROM employees WHERE first_name = :first_name
Prepared statements One of the key advantages of prepared statements is the ability to bind parameters. Binding parameters can be done using one of the approaches: 1- The question marks “?”. 2- Named parameters ( e.g. “:first_name”, “:last_name”, etc).
Prepared statements 1- Question marks: <?php $connection = new PDO($dsn, $user, $password); $sql = "INSERT INTO employees SET first_name = ? , last_name = ?, salary = ?, dateofbirth = ?"; $sth = $connection->prepare($sql); $sth->bindParam(1, $_POST['first_name']); $sth->bindParam(2, $_POST['last_name']); $sth->bindParam(3, $_POST['salary']); $sth->bindParam(4, $_POST['dateofbirth']); $sth->execute() ?>
Prepared statements 2-Named parameters: <?php $sql = "INSERT INTO employees SET first_name = :first_name , last_name = :last_name, salary = :salary, dateofbirth = :dateofbirth"; $sth = $connection->prepare($sql); $sth->bindParam(':first_name', $_POST['first_name']); $sth->bindParam(':last_name', $_POST['last_name']); $sth->bindParam(':salary', $_POST['salary']); $sth->bindParam(':dateofbirth', $_POST['dateofbirth']); $sth->execute(); ?>
Prepared statements Why to use prepared statements: 1- Security; as the developer is not responsible for escaping parameters passed to MySQL. 2- MySQL parses each query before executing it, so if we are going to execute the same query with different data values, prepared statements are the optimized solution since the query will be compiled ( prepared ) only one time, and then the data will be substituted in the query each time we execute it.
Resources http://dev.mysql.com/doc/ http://php.net/manual/en/book.mysql.php http://www.php.net/manual/en/intro.pdo.php
Course Project Detailed explanation of the project. The project document will be uploaded to the course group.
Assignment Using the employees table, write a PHP code snippet that does the following: 1- Shows all the entries in the table. 2- Deletes an entry. 3- Edits an entry. 4- Adds a new entry. The resulting application should look like PHPMyAdmin interface.
What's Next? • Course Project and Performance tips & best practices
Questions?

More Related Content

PDF
SQL - RDBMS Concepts
byWebStackAcademy
 
PPTX
SQL Joins.pptx
byAnkit Rai
 
PDF
SQL vs. NoSQL Databases
byOsama Jomaa
 
PPTX
Getting Started with MySQL I
bySankhya_Analytics
 
PPTX
MYSQL join
byAhmed Farag
 
PDF
DBMS unit-5.pdf
byProf. Dr. K. Adisesha
 
PPTX
SQL JOIN
byRitwik Das
 
PPT
Distributed database management systems
byUsman Tariq
 
SQL - RDBMS Concepts
byWebStackAcademy
 
SQL Joins.pptx
byAnkit Rai
 
SQL vs. NoSQL Databases
byOsama Jomaa
 
Getting Started with MySQL I
bySankhya_Analytics
 
MYSQL join
byAhmed Farag
 
DBMS unit-5.pdf
byProf. Dr. K. Adisesha
 
SQL JOIN
byRitwik Das
 
Distributed database management systems
byUsman Tariq
 

What's hot

PPT
SQL Queries
byNilt1234
 
PPTX
STRUCTURE OF SQL QUERIES
byVENNILAV6
 
PPTX
data manipulation language
byJananiSelvaraj10
 
PPT
MYSQL
byAnkush Jain
 
PPTX
Sql and Sql commands
byKnowledge Center Computer
 
PPTX
What is NoSQL and CAP Theorem
byRahul Jain
 
PPTX
Presentation slides of Sequence Query Language (SQL)
byPunjab University
 
PPS
Introduction to Mysql
byTushar Chauhan
 
PPTX
Data structure and algorithm All in One
byjehan1987
 
PPTX
Lec 8 (distributed database)
bySudarshan Mondal
 
PPT
SQL Views
bybaabtra.com - No. 1 supplier of quality freshers
 
PPTX
Data Structures (CS8391)
byElavarasi K
 
PPT
Database Triggers
byAliya Saldanha
 
PPTX
SQL JOIN.pptx
byjohnwick814916
 
PPT
Lecture 10 distributed database management system
byemailharmeet
 
PPTX
Introduction of DBMS
byYouQue ™
 
PPT
Mysql ppt
bySanmuga Nathan
 
PDF
Database 2 ddbms,homogeneous & heterognus adv & disadvan
byIftikhar Ahmad
 
PPTX
advanced sql(database)
bywelcometofacebook
 
PPTX
RDBMS
byPriyangaRajaram
 
SQL Queries
byNilt1234
 
STRUCTURE OF SQL QUERIES
byVENNILAV6
 
data manipulation language
byJananiSelvaraj10
 
MYSQL
byAnkush Jain
 
Sql and Sql commands
byKnowledge Center Computer
 
What is NoSQL and CAP Theorem
byRahul Jain
 
Presentation slides of Sequence Query Language (SQL)
byPunjab University
 
Introduction to Mysql
byTushar Chauhan
 
Data structure and algorithm All in One
byjehan1987
 
Lec 8 (distributed database)
bySudarshan Mondal
 
SQL Views
bybaabtra.com - No. 1 supplier of quality freshers
 
Data Structures (CS8391)
byElavarasi K
 
Database Triggers
byAliya Saldanha
 
SQL JOIN.pptx
byjohnwick814916
 
Lecture 10 distributed database management system
byemailharmeet
 
Introduction of DBMS
byYouQue ™
 
Mysql ppt
bySanmuga Nathan
 
Database 2 ddbms,homogeneous & heterognus adv & disadvan
byIftikhar Ahmad
 
advanced sql(database)
bywelcometofacebook
 
RDBMS
byPriyangaRajaram
 

Viewers also liked

PPT
Php mysql ppt
byKarmatechnologies Pvt. Ltd.
 
PPT
Php Presentation
byManish Bothra
 
PPT
Class 5 - PHP Strings
byAhmed Swilam
 
PDF
Database Systems - Introduction (Chapter 1)
byVidyasagar Mundroy
 
PPT
Class 7 - PHP Object Oriented Programming
byAhmed Swilam
 
PDF
Introduction to php web programming - get and post
bybaabtra.com - No. 1 supplier of quality freshers
 
PPT
Class 3 - PHP Functions
byAhmed Swilam
 
PDF
Introduction to PHP
byBradley Holt
 
PDF
Introduction to php web programming - sessions and cookies
bybaabtra.com - No. 1 supplier of quality freshers
 
PPT
Class 6 - PHP Web Programming
byAhmed Swilam
 
PDF
Intro To Mvc Development In Php
byfunkatron
 
PPT
Class 4 - PHP Arrays
byAhmed Swilam
 
PDF
Php course-syllabus
byHimanshu Himanshu
 
PDF
PHP MVC Tutorial 2
byYang Bruce
 
PPT
Class 2 - Introduction to PHP
byAhmed Swilam
 
KEY
PHPUnit testing to Zend_Test
byMichelangelo van Dam
 
PPT
Functions in php
byMudasir Syed
 
PPT
Class 1 - World Wide Web Introduction
byAhmed Swilam
 
PPTX
How to choose web framework
byBo-Yi Wu
 
PPTX
Why to choose laravel framework
byBo-Yi Wu
 
Php mysql ppt
byKarmatechnologies Pvt. Ltd.
 
Php Presentation
byManish Bothra
 
Class 5 - PHP Strings
byAhmed Swilam
 
Database Systems - Introduction (Chapter 1)
byVidyasagar Mundroy
 
Class 7 - PHP Object Oriented Programming
byAhmed Swilam
 
Introduction to php web programming - get and post
bybaabtra.com - No. 1 supplier of quality freshers
 
Class 3 - PHP Functions
byAhmed Swilam
 
Introduction to PHP
byBradley Holt
 
Introduction to php web programming - sessions and cookies
bybaabtra.com - No. 1 supplier of quality freshers
 
Class 6 - PHP Web Programming
byAhmed Swilam
 
Intro To Mvc Development In Php
byfunkatron
 
Class 4 - PHP Arrays
byAhmed Swilam
 
Php course-syllabus
byHimanshu Himanshu
 
PHP MVC Tutorial 2
byYang Bruce
 
Class 2 - Introduction to PHP
byAhmed Swilam
 
PHPUnit testing to Zend_Test
byMichelangelo van Dam
 
Functions in php
byMudasir Syed
 
Class 1 - World Wide Web Introduction
byAhmed Swilam
 
How to choose web framework
byBo-Yi Wu
 
Why to choose laravel framework
byBo-Yi Wu
 

Similar to Class 8 - Database Programming

PPT
Mysql
byRathan Raj
 
PDF
MySQL for beginners
bySaeid Zebardast
 
PDF
Dbms
bySachin Yadav
 
PDF
Chapter8 my sql revision tour
byKV(AFS) Utarlai, Barmer (Rajasthan)
 
PPTX
Chapter-9-MySQL.pptxxzrtyryrydfdsfdsfdsrter
byzmulani8
 
PPTX
MySql Database Basic Fundamental Brief Course D
byMANISHSINGH199557
 
PDF
SQL on Linux and its uses and application.pdf
bybhaveshsethi456
 
PDF
Introduction to MySQL and introduction to basic queries
byanishacotta2
 
PDF
Complete SQL one shot . One shot for sql
byrbucha92
 
PDF
SQL for data scientist And data analysist Advanced
byswethasetty5
 
PPT
SQL -PHP Tutorial
byInformation Technology
 
DOC
Oracle
byRajeev Uppala
 
PPTX
MySqL_n.pptx edshdshfbhjbdhcbjdchdchjcdbbjd
byaidenreji
 
PPTX
Introduction to MySQL in PHP
byhamsa nandhini
 
PPT
Introtodatabase 1
byDigital Insights - Digital Marketing Agency
 
PPT
My sql with querys
byNIRMAL FELIX
 
PPTX
SQL LECTURE.pptx
byTechnoSavage
 
PDF
Database
byVladimir Kulikov
 
PPTX
MySQL basics
byJamshid Hashimi
 
PPT
Phpmysqlcoding
byProgram in Interdisciplinary Computing
 
Mysql
byRathan Raj
 
MySQL for beginners
bySaeid Zebardast
 
Dbms
bySachin Yadav
 
Chapter8 my sql revision tour
byKV(AFS) Utarlai, Barmer (Rajasthan)
 
Chapter-9-MySQL.pptxxzrtyryrydfdsfdsfdsrter
byzmulani8
 
MySql Database Basic Fundamental Brief Course D
byMANISHSINGH199557
 
SQL on Linux and its uses and application.pdf
bybhaveshsethi456
 
Introduction to MySQL and introduction to basic queries
byanishacotta2
 
Complete SQL one shot . One shot for sql
byrbucha92
 
SQL for data scientist And data analysist Advanced
byswethasetty5
 
SQL -PHP Tutorial
byInformation Technology
 
Oracle
byRajeev Uppala
 
MySqL_n.pptx edshdshfbhjbdhcbjdchdchjcdbbjd
byaidenreji
 
Introduction to MySQL in PHP
byhamsa nandhini
 
Introtodatabase 1
byDigital Insights - Digital Marketing Agency
 
My sql with querys
byNIRMAL FELIX
 
SQL LECTURE.pptx
byTechnoSavage
 
Database
byVladimir Kulikov
 
MySQL basics
byJamshid Hashimi
 
Phpmysqlcoding
byProgram in Interdisciplinary Computing
 

Recently uploaded

PDF
Best Bank Statement Converter Software - A Documentation-Based Meta-Analysis ...
bylewisconrada
 
PDF
Presentation on Four Stroke Engine of Ic engine
bySonam Sherpa
 
PDF
Louisville User Group: Transforming Technical Debt into Technical Wealth
byLynda Kane
 
PPTX
Visual Foxpro-VFP9-Access-Report-Variable-Outside-the-report.pptx
bymanojbkalla
 
PPTX
Building Real-Time Voice AI — Udaiappa Ramachandran
byUdaiappa Ramachandran
 
PDF
SEO in Charleston SC | Local SEO Strategies to Grow Your Business.pdf
bycustomdigitalsolutio1
 
PPTX
Lecture 05. API Security for DevSecOps Eng.pptx
byvinocol222
 
PDF
oracle_apex_tamil_export_an_application.pdf
byUthamaselvan M
 
PDF
Higgsfield AI: The New Way to Create Cinematic Video
bytechnologyupside
 
PDF
Master the FME Connector for ArcGIS: Streamlined Data Management & Robust Met...
bySafe Software
 
PDF
Building Software in the AI Era: Spec-Driven Development with Kiro IDE
byHaim Michael
 
PPTX
DATALIVA-Presentation-EN_2026 Budgeting SAP Odoo ERP
byMustafa Kuğu
 
PDF
Chapter 1 Introduction to Computer Security.pdf
byGetnet Tigabie Askale -(GM)
 
PPTX
Sensors-and-Actuators-in-IoT-Systems.pptx
byMuhammedNihal54
 
PDF
Taxonomy Principles to Support Knowledge Management at a Not-for-Profit
byEnterprise Knowledge
 
PDF
DevOps GenAI_ How Generative AI Is Changing Software Delivery.pdf
byDevseccops.ai
 
PDF
The CISO_Transformation_Playbook From Cost Centre to Chief Trust Officer
bysajjasridhar1990
 
PDF
Josh Chu Boston - An Innovative Technology Executive
byJosh Chu Boston
 
PDF
Beyond BBB: Practical Alternatives to Posterior Approximation in Bayesian Neu...
byTomasz Kusmierczyk
 
PDF
From Compliance to Competitive Advantage Board-Level Cyber Governance Under D...
bySaraDavis91
 
Best Bank Statement Converter Software - A Documentation-Based Meta-Analysis ...
bylewisconrada
 
Presentation on Four Stroke Engine of Ic engine
bySonam Sherpa
 
Louisville User Group: Transforming Technical Debt into Technical Wealth
byLynda Kane
 
Visual Foxpro-VFP9-Access-Report-Variable-Outside-the-report.pptx
bymanojbkalla
 
Building Real-Time Voice AI — Udaiappa Ramachandran
byUdaiappa Ramachandran
 
SEO in Charleston SC | Local SEO Strategies to Grow Your Business.pdf
bycustomdigitalsolutio1
 
Lecture 05. API Security for DevSecOps Eng.pptx
byvinocol222
 
oracle_apex_tamil_export_an_application.pdf
byUthamaselvan M
 
Higgsfield AI: The New Way to Create Cinematic Video
bytechnologyupside
 
Master the FME Connector for ArcGIS: Streamlined Data Management & Robust Met...
bySafe Software
 
Building Software in the AI Era: Spec-Driven Development with Kiro IDE
byHaim Michael
 
DATALIVA-Presentation-EN_2026 Budgeting SAP Odoo ERP
byMustafa Kuğu
 
Chapter 1 Introduction to Computer Security.pdf
byGetnet Tigabie Askale -(GM)
 
Sensors-and-Actuators-in-IoT-Systems.pptx
byMuhammedNihal54
 
Taxonomy Principles to Support Knowledge Management at a Not-for-Profit
byEnterprise Knowledge
 
DevOps GenAI_ How Generative AI Is Changing Software Delivery.pdf
byDevseccops.ai
 
The CISO_Transformation_Playbook From Cost Centre to Chief Trust Officer
bysajjasridhar1990
 
Josh Chu Boston - An Innovative Technology Executive
byJosh Chu Boston
 
Beyond BBB: Practical Alternatives to Posterior Approximation in Bayesian Neu...
byTomasz Kusmierczyk
 
From Compliance to Competitive Advantage Board-Level Cyber Governance Under D...
bySaraDavis91
 

Class 8 - Database Programming

  • 1.
  • 2.
    Outline • MySQL • Howit works • Data Types • Data Definition Language • Data Manipulation Language • MySQL Comments • Where clause • Comparison Operators • ORDER Clause • LIMIT Clause • Escaping Characters • MySQL Joins • Using MySQL in PHP • Methods to use • Connecting to a database • Querying a database • Exercise • Exercise Solution • Prepared Statements • Tips and Tricks • Resources • Course Project • Assignment
  • 3.
    MySQL MySQL is aRelational Database Management System (RDBMS) which stores data in a structured way ( in tables ). It allows for retrieving data using Structured Query Language (SQL). MySQL Server Web Server ( Apache with PHP ) Web Browser Request Query Resultset Response
  • 4.
    How it works Howtables look like ? id name salary job_title 1 Ahmed 100 Developer 2 Mohamed 200 Doctor 3 Sara 300 Engineer 4 Marwa 400 Designer
  • 5.
    How it works •In MySQL, we can have multiple databases, every database has an unlimited amount of tables. • A table holds data about some entity ( person, employee, etc ). • The table consists of number of columns, each column can have a data type ( char, int, float, etc… )
  • 6.
    Data Types Size NameRange Example 1 TINYINT -128 TO 127 [0 to 255 if UNSIGNED] 10 2 SMALLINT -32,768 to 32,767 [0 to 65,535] 30000 3 MEDIUMINT -8,388,608 to 8,388,607 [0 to 16,777,215] 8000000 4 INT -/+2.147E+9 [0 to 4.294E+9] 80000000 8 BIGINT -/+9.223E+18 [0 to 18.45E+18] 80000000000 4 FLOAT p=0-24 4.333333 8 DOUBLE Min=+/-2.225E-308 Max=+/-1.798E+308 .000000000000000000 003 arbitrary DECIMAL[(M,[D])] Stored as string Max Range = DOUBLE range33333.4444 M CHAR(M) M=0-255 Characters, FIXED. Right padded with spaces. Hello There M VARCHAR(M) M=0-65,535 Characters M=0-255 <v5.0.3 Hello There
  • 7.
    Data Types Size NameRange Example arbitrary TINYTEXT 0-255 Characters Hello There arbitrary TEXT 0-65,535 Char's Hello There arbitrary MEDIUMTEXT 0-16,777,215 Char's Hello There arbitrary LONGTEXT 0-4,294,967,295 Char's Hello There arbitrary BINARY[(M)] M=0-255 bytes, FIXED. arbitrary VARBINARY(M) 0-65,535 bytes M=0-255 <v5.0.3 arbitrary TINYBLOB 0-255 bytes arbitrary BLOB 0-65,535 bytes arbitrary MEDIUMBLOB 0-16,777,215 bytes arbitrary LONGBLOB 0-4,294,967,295 bytes 3 DATE "1000-01-01" - "9999-12- 31" 2010-01-01 8 DATETIME "1000-01-01 00:00:00" - "9999-12-31 23:59:59" 2010-01-01 10:12:01 3 TIME "-838:59:59" - "838:59:59" 10:12:01 4 TIMESTAMP 19700101000000 - 2037+ 19700101000000
  • 8.
    Data Definition Language DDLin the language MySQL use to define its data structures ( databases and tables ). Example : CREATE TABLE employees ( id INT PRIMARY KEY, first_name CHAR(50) NULL, last_name CHAR(75) NOT NULL, salary INT NOT NULL DEFAULT 0, dateofbirth DATE NULL );
  • 9.
    Data Definition Language Alteringtables: Adding or removing columns or changing the data types of columns. Examples: ALTER TABLE employees ADD salary INT(11); ALTER TABLE employees MODIFY salary FLOAT(10,5); ALTER TABLE employees DROP salary;
  • 10.
    Data Definition Language Removinga table: DROP table employees Removing a database: DROP DATABASE db_name;
  • 11.
    Data Manipulation Language DMLis the language used by MySQL to manipulate data ( select, insert, update, delete ) SELECT statement: It is used to get data from a table. Example : SELECT * FROM employees The previous statement should select all the data from the employees table. SELECT first_name FROM employees This should return the column “first_name”
  • 12.
    Data Manipulation Language INSERTstatements They are used to insert a new row into a table. Examples: INSERT INTO employees SET id=1, first_name='John', last_name='Steve', dateofbirth = '1970-01-01‘ INSERT INTO employees (id, first_name, last_name, dateofbirth ) values ( '2', ‘John', 'Steve', '1970-01-01' )
  • 13.
    Data Manipulation Language UPDATEstatements These statements are used to update (change) data. Example: UPDATE employees SET first_name = ‘Mohamed’ This will update all the rows in the employees table setting the “first_name” to “Mohamed”
  • 14.
    Data Manipulation Language DELETEstatements These statements are used delete rows from a table. Example: DELETE FROM employees; This will delete all rows from employees table.
  • 15.
    MySQL Comments Just likeany other programming language, MySQL has ways to comment code. 1. -- one line comment 2. # one line comment 3. /* Multi Line Comment */
  • 16.
    Where clause Where clausesare used to restrict the operations to a limited number of rows (the rows the satisfy this condition). Examples: SELECT * FROM employees WHERE first_name = ‘Mohamed’ DELETE FROM employees WHERE first_name = ‘John’ Update employees SET first_name = ‘Mohamed’ WHERE last_name = ‘Ahmed’
  • 17.
    Comparison Operators Operator Description =Equals != Not Equals <> Not Equals >= Greater than or equal <= Less than or equal IS NULL True if the field is not null, false otherwise IS NOT NULL True if the field is null, false otherwise BETWEEN … AND … Checks if the value is between the specified numbers NOT BETWEEN … AND … Checks if the value is not between the specified numbers IN ( …, …, …, ) Checks if the value is in the specified list NOT IN Checks if the value is not in the specified list LIKE Checks if the value is like the specified string. NOT LIKE Checks if the value is not like the specified string. See next slide
  • 18.
    Comparison Operators Examples SELECT* FROM employees WHERE salary <= 20 SELECT * FROM employees WHERE salary BETWEEN 10 AND 20 SELECT first_name FROM employees WHERE last_name LIKE ‘%ham%’ # percentage ‘%’ matches zero or more characters SELECT * FROM employees WHERE first_name NOT LIKE ‘__ham__’ # underscore matches 1 character SELECT * FROM employees WHERE salary IN ( 10, 20, 30 )
  • 19.
    ORDER Clause ORDER clausesare used to order the result set. Examples: SELECT * FROM employees ORDER BY first_name ASC # ASC = ascendingly SELECT * FROM employees ORDER BY last_name DESC # DESC = descendingly
  • 20.
    LIMIT Clause Limit clausesare used to limit the number of rows in a result set. Examples: SELECT * FROM employees LIMIT 1 # gets only the first row SELECT * FROM employees LIMIT 1 , 2 # gets 2 rows starting from the first row ( it gets the second and third rows )
  • 21.
    Escaping Characters MySQL issimilar to PHP when escaping characters : SELECT * FROM employees WHERE first_name = ‘That’s me’ SELECT * FROM employees WHERE first_name = “That”s me” But it adds another method of escaping : SELECT * FROM employees WHERE first_name = ‘That’’s me’ SELECT * FROM employees WHERE first_name = “That””s me”
  • 22.
    MySQL Joins MySQL joinsallow us to get data from multiple tables in the same query. Suppose we have the following tables: id name salary job_title 1 Ahmed 100 Developer 2 Mohamed 200 Doctor 3 Sara 300 Engineer 4 Marwa 400 Designer id model CC employee_id 1 BMW 1600 1 2 Hyundai 1600 2 3 Honda 1800 3 4 Fiat 1600 4 Employees table Cars Table
  • 23.
    MySQL Joins The previoustables are employees and cars tables. Every car has an owner which is an employee. If we need to get data from these 2 tables, we will need to join them like the following : SELECT employees.name, cars.model FROM employees, cars WHERE employee.id = cars.id name model Ahmed BMW Mohamed Hyundai Sara Honda Marwa Fiat Result set
  • 24.
    Using MySQL inPHP To achieve dynamism, a connection between a language and database is essential. PHP has a great MySQL support. There are various methods/ approaches that we could use to connect to MySQL in PHP.
  • 25.
    Methods to use Wehave 3 methods of code styles that we can use to connect to MySQL in PHP. 1- Procedural approach. 2- MySQLi approach. 3- PDO ( PHP Data Objects ) approach. We Will user PDO because it is OOP and it supports named parameters and exceptions plus it has a good abstraction model that supports many drivers.
  • 26.
    Connecting to database <?php $dsn= 'mysql:dbname=testdb;host=127.0.0.1'; $user = 'dbuser'; $password = 'dbpass'; try { $connection = new PDO($dsn, $user, $password); } catch (PDOException $e) { echo 'Connection failed: ' . $e->getMessage(); } ?>
  • 27.
    Querying a database Herewe will need to display the last name of the people with first_name = ‘Mohamed’. <?php $sql = "SELECT * FROM employees WHERE first_name = 'Mohamed'"; $result = $connection->query($sql); foreach ($result as $row) { print $row['last_name'] . "<br/>"; } ?>
  • 28.
    Querying a database Insertinga new row into employees table : <?php $sql = “INSERT INTO employees SET first_name = ‘Ahmed’, last_name = ‘Gamal’, salary = 300"; $connection->query($sql); ?>
  • 29.
    Querying a database Gettingthe number of rows in the result set: <?php $sql = "SELECT * FROM employees WHERE first_name = 'Mohamed'"; $result = $connection->query($sql); echo “Number of rows : “ . $result->rowCount(); ?>
  • 30.
    Exercise Write a PHPapplication the inserts a new employee into the ‘employees’ table. There should be a form that looks like the following wireframe :
  • 31.
    Exercise Solution We willhave a script named “form.php” with the following HTML: <html> <body> <form action="add.php" method="post" > <ul style="list-style-type: none;"> <li><label for="first_name">First name</label> <input type="text" name="first_name" id="first_name" /> </li> <li><label for="last_name">Last name</label> <input type="text" name="last_name" id="last_name" /> </li> <li><label for="salary">Salary</label> <input type="text" name="salary" id="salary" /> </li> <li><label for="dateofbirth">Date of birth</label> <input type="text" name="dateofbirth" id="dateofbirth" /> </li> <li><input type="submit" name="submit" value="submit" /></li> </ul> </form> </body> </html>
  • 32.
    Exercise Solution The otherscript is called “add.php” which contains : <?php $dsn = 'mysql:dbname=testdb;host=127.0.0.1'; $user = 'dbuser'; $password = 'dbpass'; try { $connection = new PDO($dsn, $user, $password); $sql = "INSERT INTO employees SET first_name = '" . $connection->quote($_POST['first_name']) . "', last_name = '" . $connection->quote($_POST['last_name']) . "', salary = " . $connection->quote($_POST['salary']) . ", dateofbirth = '" . $connection->quote($_POST['dateofbirth']) . "'"; $connection->query($sql); echo "Record has been added."; } catch (PDOException $e) { echo 'Connection failed: ' . $e->getMessage(); } ?>
  • 33.
    Escaping values passedto MySQL It is advised that any values sent to MySQL should be escaped using the function called “quote” (like the previous example). In addition to preventing syntax errors in SQL statements, it is a top security concern ( google “SQL injection”, for more information about this type of security issue). PDO::quote($str);
  • 34.
    Prepared statements Prepared statementsare the ability to set up a statement once, and then execute it many times with different parameters. Example : SELECT * FROM employees WHERE first_name = ? SELECT * FROM employees WHERE first_name = :first_name
  • 35.
    Prepared statements One ofthe key advantages of prepared statements is the ability to bind parameters. Binding parameters can be done using one of the approaches: 1- The question marks “?”. 2- Named parameters ( e.g. “:first_name”, “:last_name”, etc).
  • 36.
    Prepared statements 1- Questionmarks: <?php $connection = new PDO($dsn, $user, $password); $sql = "INSERT INTO employees SET first_name = ? , last_name = ?, salary = ?, dateofbirth = ?"; $sth = $connection->prepare($sql); $sth->bindParam(1, $_POST['first_name']); $sth->bindParam(2, $_POST['last_name']); $sth->bindParam(3, $_POST['salary']); $sth->bindParam(4, $_POST['dateofbirth']); $sth->execute() ?>
  • 37.
    Prepared statements 2-Named parameters: <?php $sql= "INSERT INTO employees SET first_name = :first_name , last_name = :last_name, salary = :salary, dateofbirth = :dateofbirth"; $sth = $connection->prepare($sql); $sth->bindParam(':first_name', $_POST['first_name']); $sth->bindParam(':last_name', $_POST['last_name']); $sth->bindParam(':salary', $_POST['salary']); $sth->bindParam(':dateofbirth', $_POST['dateofbirth']); $sth->execute(); ?>
  • 38.
    Prepared statements Why touse prepared statements: 1- Security; as the developer is not responsible for escaping parameters passed to MySQL. 2- MySQL parses each query before executing it, so if we are going to execute the same query with different data values, prepared statements are the optimized solution since the query will be compiled ( prepared ) only one time, and then the data will be substituted in the query each time we execute it.
  • 39.
  • 40.
    Course Project Detailed explanationof the project. The project document will be uploaded to the course group.
  • 41.
    Assignment Using the employeestable, write a PHP code snippet that does the following: 1- Shows all the entries in the table. 2- Deletes an entry. 3- Edits an entry. 4- Adds a new entry. The resulting application should look like PHPMyAdmin interface.
  • 42.
    What's Next? • CourseProject and Performance tips & best practices
  • 43.

Editor's Notes