Tell me more ×
Programmers Stack Exchange is a question and answer site for professional programmers interested in conceptual questions about software development. It's 100% free, no registration required.
up vote 0 down vote favorite

I'm building a big website, and using the normal old mysql_query method for transactions and communications with the database, and everything i going fine, including security. I'm a little bit confused, should I switch to the new PDO interface? cause I learnt that's safer, or keep using the old mysql_query() and mysql_fetch_assoc() methods?

I'm very close to completing the website, and to switch to the PDO interface will cost me time, to start updating my codes.

I'm a little confused, which should I use and what are the pros and cons?

share|improve this question
5  
mysql_query is deprecated. 'nuff said? –  Robert Harvey May 20 at 23:38
1  
The new PDO interface? I believe PDO exists for years, so it can hardly qualify as new. –  MainMa May 21 at 6:30

3 Answers

up vote 5 down vote

I'm a little confused, which should i use

No doubt if you just go through this link you will see a notice. So you should get switched to PDO or MySQLi.

Cons and Pros :

There are many posts available on stackoverflow on this subject. They all talk about PDO and why use it.

And many more here. Finally I would recommend you to switch to PDO or mysqli as mysql will be removed as per the link. Even if you have considered the security issues and secured you app, whats the use when it is completely lost? You need to do it later time somehow, So do it now itself. Hope this helps.

share|improve this answer
up vote 0 down vote

I would prefer PDO for any new development, as its a pretty nice interface and supports most backend databases without to much fiddling (with the notable exception of ORACLE!).

However if you a a functioning system using 'mysql_query' then I don't see any reason to change. The main advantage of PDO apart from portability is that its a nice clean interface to code up. But as your application is already coded and you do not intent to switch from MySql to another DB I think your time would be better spent doing something more useful.

share|improve this answer
up vote 0 down vote

Normally it's good to use the Mysqli or PDO is the best option for connecting database, since mysql will be removed soon.

But in developer point of view, write a simple wrapper class for all database connectivity

For example

For mysql

Class database_mysql {
     public getResults($query) {
         $result = mysql_query($query);
         $row = mysql_fetch_assoc($result);
         return $row;
      }
.
.
.
<other functions>
}

For PDO

Class database_pdo {
     public getResults($query) {
        $statement = $pdo->query($query);
        $row = $statement->fetch(PDO::FETCH_ASSOC);
        return $row;
      }
.
.
.
<other functions>
}

For mysqli

Class database_mysqli {
     public getResults($query) {
        $result = $mysqli->query($query);
        $row = $result->fetch_assoc();
        return $row;
      }
.
.
.
<other functions>
}

when you initialize the class use below

$db = new Database_mysql(<arguments>);

where ever you need the results, just use 

$db->getResults(<query>);

if you need to switch over to mysqli, or PDO, just change the class name

$db = new Database_pdo(<arguments>);

So this will save lot of your time on changing the extension.

share|improve this answer
 
You know, if you set getResults to private, you won't be able to use it outside of the class... –  Florian Margaine May 21 at 8:58
 
Thanks for your notification, I have changed this. –  Vijay May 21 at 12:05

Your Answer

 
discard

By posting your answer, you agree to the privacy policy and terms of service.

Not the answer you're looking for? Browse other questions tagged or ask your own question.