mysql带参数的存储过程编写(动态sql语句)
时间:2009-06-02 来源:sss0213
该存储过程是根据用户输入的条件和排序方式查询用户的信息,排序条件可以没有
调用方式:call GetUsersDynamic('age<=30','');
/** *//********动态查询用户的信息********/
CREATE PROCEDURE GetUsersDynamic(WhereCondition varchar(500),OrderByExpress varchar(100))
begin
declare stmt varchar(2000);
if LENGTH(OrderbyExpress)>0 then
begin
set @sqlstr=concat('select id,name,password,age,getdate(adddate) as AddDate from users where ',WhereCondition,' order by ',OrderByExpress);
end;
else
begin
set @sqlstr=concat('select id,name,password,age,getdate(adddate) as AddDate from users where ',WhereCondition);
end;
end if;
prepare stmt from @sqlstr;
execute stmt;
end;
getdate()是一个自定义的函数,作用是返回日期的短格式CREATE DEFINER=`root`@`localhost` FUNCTION `getdate`($date datetime) RETURNS varchar(50) CHARSET latin1
return date_format($date,'%Y-%m-%d');
Code
CREATE DEFINER=`root`@`localhost` PROCEDURE `InsertUser`(in name2 varchar(50),in password2 varchar(32),in age2 int,in adddate2 datetime)
begin
DECLARE stmt varchar(2000);
set @sqlstr=concat('insert into users(name,password,age,adddate) values(');
set @sqlstr=concat(@sqlstr,'''',name2,'''',',','''',password2,'''',',',age2,',','''',adddate2,'''',')');
prepare stmt from @sqlstr;
execute stmt;
end; 注:如果传入参数是整型值,则可以不用动态sql语句,可以直接 select * into vara from table where ..
调用方式:call GetUsersDynamic('age<=30','');
/** *//********动态查询用户的信息********/CREATE PROCEDURE GetUsersDynamic(WhereCondition varchar(500),OrderByExpress varchar(100))begindeclare stmt varchar(2000);if LENGTH(OrderbyExpress)>0 thenbegin set @sqlstr=concat('select id,name,password,age,getdate(adddate) as AddDate from users where ',WhereCondition,' order by ',OrderByExpress);end;elsebegin set @sqlstr=concat('select id,name,password,age,getdate(adddate) as AddDate from users where ',WhereCondition);end;end if;prepare stmt from @sqlstr;execute stmt;end;
getdate()是一个自定义的函数,作用是返回日期的短格式
CREATE DEFINER=`root`@`localhost` FUNCTION `getdate`($date datetime) RETURNS varchar(50) CHARSET latin1return date_format($date,'%Y-%m-%d');
动态插入数据的存储过程,(注意四个单引号表示一个一引号):
CodeCREATE DEFINER=`root`@`localhost` PROCEDURE `InsertUser`(in name2 varchar(50),in password2 varchar(32),in age2 int,in adddate2 datetime)
begin
DECLARE stmt varchar(2000);
set @sqlstr=concat('insert into users(name,password,age,adddate) values(');
set @sqlstr=concat(@sqlstr,'''',name2,'''',',','''',password2,'''',',',age2,',','''',adddate2,'''',')');
prepare stmt from @sqlstr;
execute stmt;
end; 注:如果传入参数是整型值,则可以不用动态sql语句,可以直接 select * into vara from table where ..
相关阅读 更多 +
