What are the advantages and disadvantages of embedding SQL queries directly into PHP files versus encapsulating them within functions?

Embedding SQL queries directly into PHP files can make the code harder to maintain and debug, as the queries are scattered throughout the code. On the other hand, encapsulating SQL queries within functions can make the code more organized and easier to manage. It also promotes code reusability and helps in preventing SQL injection attacks.

// Encapsulating SQL queries within functions

function get_user_data($user_id) {
    $conn = new mysqli(&quot;localhost&quot;, &quot;username&quot;, &quot;password&quot;, &quot;dbname&quot;);
    
    $sql = &quot;SELECT * FROM users WHERE id = ?&quot;;
    $stmt = $conn-&gt;prepare($sql);
    $stmt-&gt;bind_param(&quot;i&quot;, $user_id);
    $stmt-&gt;execute();
    
    $result = $stmt-&gt;get_result();
    $user_data = $result-&gt;fetch_assoc();
    
    $stmt-&gt;close();
    $conn-&gt;close();
    
    return $user_data;
}

$user_id = 1;
$user_data = get_user_data($user_id);
print_r($user_data);

Keywords

SQL queries PHP files encapsulation functions advantages

What are the advantages and disadvantages of embedding SQL queries directly into PHP files versus encapsulating them within functions?

Keywords

Related Questions