Thank you so much 🙏

Happy to hear that, thank you

Thank you 🙏

Thank you 🙌

Glad you like it, thank you

Thank you so much ❤️❤️❤️

Thank you

Really glad to hear that. Thank you Adolf 🙌

Thank you 🙌

Glad it was helpful, thank you 💙

Happy to hear this 💙

Thank you. We'll touch some security related topics in 3rd section

You're welcome, glad you enjoyed it

No I'm not, this is actually my first attempt at teaching if you can believe it. Thank you very much, it means a lot 💙

@@ProgramWithGio You are doing great! You were born to do it. I enjoy watching your tutorials. Thank you!

@@tedybg thank you, that means a lot. Glad you like it 🙌💙

You're welcome 💙💙

Thank you 💙

You are welcome!

Heh, glad you liked that 💙

Glad it helped 🙌

Thank you, yea typed too fast :)

You're welcome, thank you 💙

Thank you 🙌

Thank you 🙌

You're welcome!

Thank you. You could get started with Laravel even without watching my lessons, Laravel is just that awesome :). That being said though, watching these lessons will definitely help you understand Laravel better & make it easier to understand some of that hidden magic. And that applies to any other framework, not just Laravel. If I was starting out & had the time, I would first learn PHP & MVC, then move on to Laravel. This is one of the reasons why I am putting so much time into this series, I started it about 8 months ago & still going. I want to make sure that important details & topics are covered.

You got it!

phpdelusions is a nice site

You're welcome

You're welcome

Glad it was helpful!

Thank you. That is a good suggestion, we will work on a project where you'll get to practice pretty much everything we've covered. But I'll see if I can make some exercises for other videos and post links

Thank you. Yes I improved on that in 3rd section, for older videos you can slow it down on KZfaq by selecting the playback speed 💙

Thank you

💙💙💙

Happens behind the scenes, you can check your docker container's ip, there is a command for it I think. Should be able to google it

localhost should work

@@ProgramWithGio Yeah it worked bro, I had made another mistake. Thank you!

query method returns PDOStatement which implements IteratorAggregate that allows it to be iterated over in loops.

Glad it was useful. Are you getting any errors?

@@ProgramWithGio Mystery errors, yes. Bottom line binding parameters for execution is near impossible! 1) I enter a string in the Search field. 2) Sanitize the string. 3) Seek results by searching two or more database columns/fields indexed for FULLTEXT Search. 4) Binding Parameters right in the Match () Against () WHERE clause is impossible with PDO. If you would permit me, I would send you my code, and errors screenshots. Maybe, you would spot what I am doing wrong! The Queries run easily in PHPMyAdmin environment directly in the Database.

@@NedumEze yea send it to me if you can and I'll take a look. I personally haven't used match/against much, but I would be happy to take a look and see if I can spot something. Try disabling emulated prepares and see if that helps, I know that you can't use placeholders in some statements like with LIMIT for example when emulated prepares are enabled, so might be the same issue

@@ProgramWithGio Here's my email: adolfce@gmail.com. Use it to give me yours, so that I can send you the Code, please. Emulation is disabled, right in my Constructor, in the options array.

I've sent you an email

I think it will conflict yes

I didn't say it's slower, I said "possible performance boost", that boost is probably very negligible. There are uses for emulated prepares but I personally try to disable them when I can and use native ones.

Thank you. That is because I have a typo there in the date format, I use H:m:s it should be H:i:s (m) is for month so 7 is the month # because its July. I pointed out the typo at 15:03 on the left corner. About the pace yea I heard from few others that it's a bit fast for which I apologize, I try to slow down as much as I can but it's just the way I tend to speak seems like :). Will surely improve on that. One thing that has helped others is adjusting the playback speed on KZfaq to slow it down.

You could but make sure to use prepared statements

Hello, yes in the first video of the course you can see the overview of the topics for all three sections. There are just one or two more videos left for the 2nd section and then we'll begin the third, I am going to make another overview video that will explain what to expect in the 3rd section.

I'm not sure I understand what you are trying to do. You want to connect to remote Microsoft SQL DB using PDO? You can use SQLSRV DSN, check this part in the docs www.php.net/manual/en/ref.pdo-sqlsrv.connection.php

For drivers that don't natively support prepared statements yes. This is the note in the official documentation: "Some drivers do not support prepared statements natively or have limited support for them. If set to true PDO will always emulate prepared statements, otherwise PDO will attempt to use native prepared statements. In case the driver cannot successfully prepare the current query, PDO will always fall back to emulating the prepared statement."

One does by reference, other by value. I don't use bindParam much, to me it's harder to read and understand what's going on given that it is by reference, so I stick to bindValue.

@@ProgramWithGio Thank you so much!

It's not about sanitizing, using prepared statements handles the proper escaping for you to prevent sql injections. You can read about prepared statements in MySQL, just Google it and plenty of articles will come up or even the official docs.

In your fetch method. So $pdo->fetchAll(PDO::FETCH_CLASS, YourClass::class). You can also use setFetchMode to fetch the mode to class like this: $stmt->setFetchMode(PDO::FETCH_CLASS, YourClass::class);

@@ProgramWithGio thank you so much Gio

Hello. It means table doesn't exist, did you create table? You can refer to the intro to MySQL lesson to learn how to create tables

Hello. Yes that's possible and you would use it just like that. Write the query and use placeholders the same way.

@@ProgramWithGio thanks for the reply. I've tried it but had some errors, especially with inner join, etc ..

@@will10cent can you share the exact query and the error you get?

@@ProgramWithGio I will try to reproduce it on monday and come back at you, thanks a lot for the help

@@ProgramWithGio now i have it. When you have a variable for example $sports = ["soccer", "bball"]; and you try something like , select ... where sport in $sports; and i tried to parametize $sports, it didn't work. Questions are: 1- is that a vulnerable code 2- how to parametize it

💙

Depends on the project & scope. Php 8.1 will no longer strigify the integers & floats which it was before when using emulated prepares so even with emulated prepares it should return integers & floats as their native types instead of strings.

Nope, not dead at all. I wouldn't be spending hundreds of hours making this course if it was dead 🙂

You know what therr are languages from 60s and 70s and didn't die yet .. But imagine when taking about the language thag runs more than 40% of thd web ? .. It's an entire language for the web development not just a framework like django or node anf while some node kids make fun of it we earn money using it .. And it also has very powerful updates Even the key advantage of node against php is gone LOL now there is a library called guzzle which can make php async like node js

@@ProgramWithGio the capacity of this dinosaur or mastodon, with respect to its experienced code for security domains, the speed that has been increased with JIT, and the options of synchronization in real time as you indicated or ReactPHP, make it a powerful language .....

PDO falls back to emulated prepares if it cant prepare natively, so that's probably why you don't see difference. Did you try disabling the emulated prepares? Cause I don't see emulated prepares disabled in above code.

@@ProgramWithGio that worked, thank you Gio, now I understand.

I wouldn't worry about performance much. It should be fine, that's how ORMs work. If you prefer to work with objects instead of arrays & keys then yes that's what you would use to directly hydrate your own objects. Another way is to hydrate objects yourself

@@ProgramWithGio thanks， that makes sense

This is a local development setup. For production I agree, you would not want to use root.

Check beginning of part 2. I explain it there. I should've removed this part from the recording but decided to leave it in and address it in part 2. It's not SQL injection but I agree it should be using params instead of putting in integer value in the query.

Then you need to use double quote in query as well and it will work. The point is you don't know what user might submit, they can brute force it & submit various strings formatted in different ways

Because if email isn't set then variable email never gets defined. You should define email variable before if statement and assign to blank value for example or add the else statement and set email to blank there or whatever logic you want to do when email isn't set. Other option: $email = $_GET['email'] ?? '';

@@ProgramWithGio Thanks Gio.

Are you sure you created DB under the same connection? Are you using Docker or XAMPP?

I use Mysql on mac

@@danielmung9600 check your connection configuration, the error says there is no DB so probably wrong connection or something, maybe typo in DB name? I haven't used Mac so I'm not sure if there is any other configuration involved