MySQL查询无结果

Question

I want echo my DB results from Session but i get no results or errors:

  $_SESSION['username'];

  $link = mysqli_connect("$myHost", "$myUser", "$myPass", "$myDB");

    // Check connection
    if($link === false){
        die("ERROR: Could not connect. " . mysqli_connect_error());
    }


    $username = mysqli_real_escape_string($link, $_SESSION['username']);


   $sql = "SELECT * FROM users where username = $username";
    $result = mysqli_query($link, $sql);

    echo $result;

Anyone know why not? Session works.

Thanks

Answer 1

You should change your query, like this:

$sql = "SELECT user FROM yourtablename WHERE username = $username"

Where "user" is what you want to SELECT if you want to select all data, you can use "*", yourtablename is table name of table you want to select.

After your edits, your code should look like

  $_SESSION['username'];

  $link = mysqli_connect("$myHost", "$myUser", "$myPass", "$myDB");

    // Check connection
    if($link === false){
        die("ERROR: Could not connect. " . mysqli_connect_error());
    }


    $username = mysqli_real_escape_string($link, $_SESSION['username']);


   $sql = "SELECT * FROM users where username = $username";
    if ($result = $link->query($sql)) {

        while ($row = $result->fetch_row()) {
            var_dump($row);
        }

        $result->close();
    }

More info here

Notice: mysqli_real_escape_string it's not very security. A better option to protect against SQL injections is using prepared statements, more info here