使用 PDO 在准备好的语句中传递日期 sql 类型

Question

I'm using 000webhost to host my website.

I'm trying to implement this flow:

1. Receive file about a given date and shift;
2. Delete any information about that date and shift that exists in the database;
3. Insert the received information;

I'm having trouble with step two. The code I'm using is this:

 $cleanupSql = "DELETE FROM `Turnos` WHERE Dia = :Dia AND Turno  = :Turno ";

 $cleanupSth = $conn->prepare($cleanupSql);

 (...)
 $temp = date_format($date,"Y-m-d");
 $cleanupSth->bindParam(':Dia',$temp,PDO::PARAM_STR);
 $cleanupSth->bindParam(':Turno',$splited[2],PDO::PARAM_STR);
 $cleanupSth->execute();

$temp is equal to 2018-10-18 and splited[2] is "1". dia of type date and Turno of type varchar. PHP doesn't present any errors, but the database is not changed.

I've also tried to use ? params, passing the dateTime object.

When I run this query in the database, which , it works

 DELETE FROM `Turnos` WHERE Dia = "2018-08-18" AND Turno  = "1"

EDIT: I've modified the script to run the query like so:

$cleanupSql = "DELETE FROM `Turnos` WHERE Turno  = :Turno ";

But it doesn't reflect on the database.

Answer 1

The problem was the way I was getting the information for the Turno param. It was not correctly sanitized.