(PECL ingres >= 2.1.0)
ingres_escape_string — Escape special characters for use in a query
$link
, string $source_string
) : stringingres_escape_string() is used to escape certain characters within a string before it is sent to the database server.
link
The connection link identifier
source_string
The source string to be parsed
Returns a string containing the escaped data.
示例 #1 Escape special characters for use in a query
<?php
$link = ingres_connect($database, $user, $password);
$last_name = "O'Connor";
$sql = sprintf("select * from user_profile where up_last = '%s'", ingres_escape_string( $link, $last_name));
$result = ingres_query($link, $sql);
while ($user = ingres_fetch_object($result))
{
echo $user->up_first . '<BR/>';
}
ingres_commit($link);
ingres_close($link);
?>