I have a current SQL search query that lets users enter keywords to search for my SQL database. At the moment, the search will work with multiple words, but will show all results for either keyword. If you type in "Ford Mustang" it will show all results that have either "Ford" or "Mustang", but I need it to only show results that show both "Ford" and "Mustang".
What I have tried is below
public function getProductByName($name){
$stmt = $this->pdo->prepare('SELECT * FROM tbl_products WHERE name REGEXP :names');
$names = "[[:<:]](" . str_replace(" ", "|", $name) . ")[[:>:]]";
$stmt->execute(array('names' => $names));
return $stmt;
}
maybe this what you're looking for
select * from example where name like "%mustang%ford%"
You can write the query
select * from tbl_products where name like "%Mustang%" and name like "%ford%";
PHP code
//you may split search string like
$searchArray = explode(' ', $name);
//for loop for preparing the query
$query = 'SELECT * FROM tbl_products WHERE ';
$searchParams = array();
$conditions = [];
for($searchArray as $searchStr){
$conditions[] = 'name like ?';
$searchParams[] = "%$searchStr%";
}
//attach the conditions
$query .= implode(" and ", $conditions);
//execute the query
$stmt = $this->pdo->prepare($query);
$stmt->execute($searchParams);
I am wondering how I can properly check keywords with SQL "LIKE";
I have a script which looks like that:
$search_keywords = $_POST['search-keywords'];
$search_keywords = str_replace(" ","%", $search_keywords);
$search_keywords = '%' . $search_keywords . '%';
$search = $odb -> query("SELECT * FROM `cars` WHERE `keywords` LIKE '".$search_keywords."' ORDER BY `id` ASC");
$rows = $search->rowCount();
if ($rows > 0) {//Loop}
In fact, it's working but only when keywords in the database look like that:
audi, a3, silver and I search for audi a3
If i am trying to search like that: a3 audi it's not working
Any hints?
You need to split $search_keywords into separate words, and search for each of them.
To search for an item in a comma-separated list, use FIND_IN_SET() rather than LIKE. LIKE '%audi%' will also match audi-quatro.
$keyword_array = explode(" ", $_POST['search_keywords']);
foreach ($keyword_array as &$keyword) {
$keyword = "FIND_IN_SET('$keyword', keywords)";
}
$tests = implode(' AND ', $keyword_array);
// $tests contains something like: FIND_IN_SET('a3', keywords) AND FIND_IN_SET('audi', keywords)
$sql = "SELECT * FROM `cars` WHERE $tests ORDER BY `id` ASC";
$search = $odb->query($sql);
It's a best practice to use PDO::prepare when you are passing user data in your request, to evoid SQL Injection
$search = $odb->prepare("SELECT * FROM cars WHERE keywords
LIKE CONCAT('%',:keyword,'%')
ORDER BY id ASC");
$results = $search->execute([":keywork" => $search_keywords]);
My database has row with a column like
data1+data2+data3+data4
How can i search specific value by sql query in php?
For example data2?
The +s separate each data point.
Why don't you try something like below:
SELECT (data1+data2+data3+data4) AS total
FROM Table
WHERE total LIKE '%YOUR_QUERY%'
Now you can use the index total
$lcSearchVal = "data1+data2+data3+data4";
$lcSearchVal = explode( '+', $lcSearchVal );
$sql = 'SELECT * FROM tablename WHERE (';
$data_array = array();
foreach( $lcSearchVal as $lcSearchWord )
{
$data_array[] = 'fieldname LIKE "%'.$lcSearchWord.'%"';
}
$sql .= implode(' OR ', $data_array).')';
print $sql;
I am using a HTML form to allow users to find entries in a database table:
<form action="controller.php" method="get">
<input type="text" name="word" id="word">
The table in my database has a column called keywords that contains multiple values, and so I use a SELECT query to select all rows that have any keywords that match what the user typed into the form. So controller.php contains this query:
$word= $_GET['word'];
$query = SELECT * FROM table WHERE table.keywords LIKE '%{$word}%
This works fine, except if a user types more than one word into the search box. How do I alter this such that, when a user types more then one word into the search box, it will return all rows that have either of the users words in its keywords column.
i.e, user searches "apples oranges", and the query returns all rows that have either "apples" or "oranges" in their keywords field.
You can try with -
$words = explode(' ', $word);
$query = "SELECT * FROM table WHERE table.keywords IN (".implode(',', $words).")";
Or -
$query = "SELECT * FROM table WHERE";
$conds = array();
foreach ($words as $val) {
$conds[] = "table.keywords LIKE '%".$val."%'";
}
$query .= implode(' OR ', $conds);
The checks can be added if required.
You could use a regular expression:
$words = explode(' ', $_GET['word']);
$regex = implode('|', $words);
$query = "SELECT * FROM table WHERE table.keywords REGEXP '{$regex}'";
I use this code and work fine
$regcond = trim($_GET['word']);
$regcond = preg_replace('!\s+!', ' ', $regcond); //change how many space beetwen word to one space
$regcond = trim($regcond);
$regcond = str_replace(" ",".+",$regcond); // change all space to .+ for search with regex
$final_cond = 'SELECT * FROM table WHERE table.keywords REGEXP "' . $regcond . '"';
$words = explode(" ",$string);
$string = array_map(function(&$word){
return "+".$word."*";
},$words);
$term = implode(" ",$string);
$query = "SELECT * FROM table_name WHERE MATCH(column_name) AGAINST('{$term}' IN BOOLEAN MODE)";
LIKE command is good for one-word string. For advanced searching in database use FULLTEXT search.
https://dev.mysql.com/doc/refman/5.0/en/fulltext-search.html
As in SQL unable to search for single name try splitting the name based on spaces like i.e Heavens Road and appending to string i.e ('%Heavens%') OR (%Road%) in final query.
SELECT id, gps, street_name
FROM streets
WHERE street_name LIKE ('%Heavens%') OR (%Road%)
e.g if more terms are then LIKE (%1term%) OR (%2term%) OR (%3term%) OR (%4term%)
Here's my PHP solution where the search string contains multiple keywords, can be in any order, may be separated by multiple spaces, may have repetitions, must be ranked on how many keywords found, and is sql injection safe. Assume table is called Topics with an ID of TopicID, text in column TopicText and keywords in column Keywords, and your mySQL connection is $dbConn
//convert search string to lowercase - will do case insensitive search later
$words = trim(strtolower($_GET['k']));
//remove punctuation and wildcards
$words = str_replace(array('*', '?', '-', '.', '/', '(', ')', '+', '&'), '', $words);
//turn the string into an array of unique words
$words = array_unique(explode(' ', $words));
//strip the words we are not interested in
$stopWords = array('', '*', '?', 'a', 'about', 'an', 'and','are', 'as', 'at', 'be', 'by', 'for', 'from', 'how', 'in', 'is', 'it', 'of', 'on', 'or', 'that', 'the', 'this', 'to', 'was', 'what', 'when', 'where', 'who', 'will', 'with');
foreach($stopWords as $word) {
if (($key = array_search($word, $words)) !== false) unset($words[$key]);
}
//build SQL statement
$sql = "select TopicText, Score from (select TopicID, 0";
foreach($words as $word) {
if($word>'') $sql .= "+if(Keywords regexp '" . $dbConn->real_escape_string($word) . "',1,0)";
}
$sql .= " as Score from Topics) T join Topics TT on TT.TopicID = T.TopicID where T.Score>0 order by Score desc";
If you don't have a column with keywords, one could use the TopicText column as the regexp target above.
regular expression does it for me.
$str = $_GET['words'];
$commonwords = 'a,an,and,I,it,is,do,does,for,from,go,how,the,this,are';// you dont want to search for these common words
$commonwords = explode(",", $commonwords);
$str = explode(" ", $str);
foreach($str as $value){
if(!in_array($value, $commonwords)){ // remove the common words from search
$query[] = $value;
}
}
$query = implode(" ", $query);// generate coma separated values
$str2 =(explode(" ",$query));// convert the values to an array
$Words = implode('|',array_values($str2)).'';// generate values to be searched and make regex
"SELECT * FROM table_name WHERE `keywords` REGEXP '$Words'"
Works for me where the user search for more than one product each separated by a space. user does not have to type full words
$word= $_GET['word'];
if (strpos($word, ' ') !== FALSE) {
$wordArr = explode(' ', $word);
$where = '';
foreach ($wordArr AS $word) {
$where .= " table.keywords LIKE '%{$word}%' OR";
}
$where = trim($where, 'OR');
} else {
$where = "table.keywords LIKE '%{$word}%' ";
}
$query = "SELECT * FROM table WHERE $where";
echo $query;
<?php
include 'db.inc.php';
//function that well return search results
//takes the keywords entered by user
function search_results ($keywords){
//code here
$returned_results= array();//array that will contain results
$where= ""; // constract of query for results
$keywords = preg_split ('/[\s]+/', $keywords);
//function split values by space
// (hello aya) is like ( hello aya )
$total_keywords = count($keywords);
//count number of words entered ex(ayoy adel =2 , a b c s = 4)
foreach ($keywords as $key=>$keyword){
$where .="`keywords` LIKE '%$keywords%'";
if ($key != ($total_keywords -1 )){
$where .= " AND " ;
}
}
$results = "SELECT `title` , `subject` , `id` FROM `` WHERE $where ; ";
}
//array begins from 0 , this erro
//$key=>$keyword key=0 , 1, 2 $keyword value in database
//
//
//
/*$sqlQuery= " SELECT `keywords` FROM `question` WHERE `keywords` LIKE `%hci%` AND `keywords` LIKE `%what%` ";
*/
?>
This line here:
$where .="`keywords` LIKE '%$keywords%'";
includes the $keywords variable which is an array, not a string. You probably meant to use the $keyword variable there.