How to select from MySQL where Table name is Variable
64,885
You'd have to do this with a prepared statement. Something like:
SET @s = CONCAT('select * from ', @Cat, ' where ID = ', @ID_1);
PREPARE stmt1 FROM @s;
EXECUTE stmt1;
DEALLOCATE PREPARE stmt1;
Author by
Rosmarine Popcorn
Updated on July 09, 2022Comments
-
Rosmarine Popcorn almost 2 years
I have a case where getting the table name should be from a set variable like:
SET @ID_1 = (SELECT ID FROM `slider` LIMIT 0,1); SET @Cat = (SELECT Category FROM `slider` LIMIT 0,1); select * from @Cat where ID = @ID_1but doing that way MySQL outputs an error, so could someone show me how I can achieve that, because these are my baby steps in MySQL.
-
Rosmarine Popcorn over 12 yearsOne more thing it show resul only when i remove DEALLOCATE PREPARE stm1;
-
Tim Visée about 8 yearsBrilliant solution. Helped me to solve the issue I'm having, thanks.
-
Frozen Flame almost 8 yearsWhat does theDEALLOCATE PREPAREdo? -
ruzenhack almost 7 years@FrozenFlame, release the
stmt1. If you do not release it, may you encounter the max limit of statements, enforced bymax_prepared_stmt_countvariable system, how you can read here. -
oldboy almost 6 yearsis this still valid syntax in 2018?? -
Agamemnus over 5 yearsI think so... Don't forget, this only works for procedures, not functions. -
Raymond Nijland over 5 yearsI know this is a old answer but there is one big problem with this is that it opens you up to SQL injections..EXECUTE <> USING <>syntax is safe for SQL injections.. So you need to executePREPARE table_exists FROM 'SELECT TABLE_NAME FROM information_schema.TABLE WHERE TABLE_NAME = ?'; EXECUTE table_exists USING @Catfirst to check and use that to validate if there is not SQL injection vector in@Cat -
Simon.S.A. about 4 yearsWelcome to stackoverflow. Please post code as text, not as images. See How to Answer
-
Tal Kohavy about 3 yearsWhat if I also need to store the result into a variable? SELECT x INTO @x FROM @y.... Is it possible with with CONCAT?
