What are the best practices for fetching and processing data from a MySQL database in PHP?
When fetching and processing data from a MySQL database in PHP, it is important to use parameterized queries to prevent SQL injection attacks. Additionally, it is recommended to properly handle errors and exceptions that may occur during database operations. Using prepared statements can also improve performance when executing multiple queries.
// Connect to MySQL database
$servername = "localhost";
$username = "username";
$password = "password";
$dbname = "database";
$conn = new mysqli($servername, $username, $password, $dbname);
// Check connection
if ($conn->connect_error) {
die("Connection failed: " . $conn->connect_error);
}
// Fetch data using parameterized query
$stmt = $conn->prepare("SELECT * FROM users WHERE id = ?");
$stmt->bind_param("i", $id);
$id = 1;
$stmt->execute();
$result = $stmt->get_result();
while ($row = $result->fetch_assoc()) {
// Process data
echo "Name: " . $row['name'] . "<br>";
}
// Close connection
$stmt->close();
$conn->close();