mysql_result进入更高级的mysqli函数

Question

I am upgrading my small project from MYSQL database into MYSQLi and I have only 3 functions left to update.

This is my function in MYSQL :

function id_from_username($username) {
    $username = sanitize ($username);
    return mysql_result(mysql_query("SELECT ´id´ FROM ´members´ WHERE ´username´ = '$username'"), 0, 'id');
}

I have this code which I tried to migrate into the function above but no use:

$result = "SELECT * FROM `settings`";
 if (!$row = $db_connect->query($result)) {
     die('Oops, something went wrong during loading data! Error x010');
 }

I know I am supposed to public the code I tried out, but the problem is I do not really know how to migrate the MYSQLi into just that specific function and I know that the code was wrong in all ways possible if so to say.

Answer 1

Well you can try this one to migrate:
https://github.com/colshrapnel/safemysql/blob/master/safemysql.class.php

First, connect somewhere earlier in the script:

include 'safemysql.class.php';
$opts = array(
    'user'    => 'user',
    'pass'    => 'pass',
    'db'      => 'db',
    'charset' => 'latin1',
);
$db = new SafeMySQL($opts);

then write your function this way

function id_from_username($username) 
{
    global $db;
    return $db->getOne("SELECT id FROM members WHERE username = ?s", $username);
}

note that this is not a pure mysqli but a custom library built upon it.
Most important difference is that every placeholder have to be marked with it's type, according to their role in the query. Eg for the string $username string placeholder ( ?s ) were used.

Answer 2

I found the right answer, the code should be following:

function id_from_username($username) {
    $username = sanitize($username);
    global $db_connect;

    $result = $db_connect->query("SELECT(id) FROM members WHERE username = '$username'");
    if (false === $result) {
        return false;
    }
    return ($result->num_rows === 1);
}

It's simple and I still can stick to my code without integrating other scripts :)