Yii's query builder is a powerful tool that allows developers to build secure and readable database queries through PHP methods. 1. It generates SELECT, INSERT, UPDATE and DELETE statements through object-oriented method to reduce the risk of SQL injection. 2. Query construction adopts chain calling methods, such as select(), from(), where() and other methods to dynamically construct query conditions. 3. Supports complex query logic, including dynamic condition filtering, OR logical grouping and nested queries. 4. It not only supports data retrieval, but also supports data writing operations, such as insert(), update() and delete(). 5. It is recommended to use alias to improve code readability, avoid directly splicing user input, and use rawSql to debug generated SQL statements. 6. When it comes to complete models and associations, it is recommended to prioritize Active Record. This approach simplifies database interaction and makes the code safer, clearer and easier to maintain.
When you're working with Yii and need to build database queries without writing raw SQL, the Query Builder is a powerful tool. It gives you a clean, object-oriented way to construct SELECT, INSERT, UPDATE, and DELETE statements dynamically — especially useful when conditions or user input affect what data you're fetching or modifying.
Understanding the Basics of Yii Query Builder
The Query Builder in Yii (especially Yii2) helps you create SQL queries using PHP methods instead of writing SQL strings manually. This makes your code safer (reducing SQL injection risks) and more readable.
Here's how a basic SELECT query looks:
use yii\db\Query;
$query = (new Query())
->select(['id', 'name'])
->from('user')
->where(['status' => 1]); This builds a query like SELECT id, name FROM user WHERE status = 1 . You can then fetch results using all() or one() :
$users = $query->all();
You don't have to remember exactly SQL syntax every time — just chain methods like where() , orderBy() , limit() , etc.
Building Complex Queries Step by Step
Sometimes you need dynamic conditions based on user input or other logic. That's where chaining really helps.
For example, suppose you want to filter users by name or email depending on whether those values ??are provided:
$query = (new Query())->from('user');
if (!empty($name)) {
$query->andWhere(['like', 'name', $name]);
}
if (!empty($email)) {
$query->andWhere(['like', 'email', $email]);
}You can also group conditions using arrays or nested queries. Here's an example with OR:
$query->where([
'or',
['like', 'name', 'John'],
['like', 'email', 'john']
]);This flexibility lets you build complex filtering systems for things like search forms or admin interfaces.
Inserting, Updating, and Deleting Records
Query Builder isn't only for reading data — it also supports writing operations.
To insert a new record:
Yii::$app->db->createCommand()
->insert('user', [
'name' => 'Jane Doe',
'email' => 'jane@example.com',
'status' => 1,
])
->execute();Updating records:
Yii::$app->db->createCommand()
->update('user', ['status' => 0], 'id = 100')
->execute();And deleting:
Yii::$app->db->createCommand()
->delete('user', 'id = 100')
->execute();These commands generate parameterized queries under the hood, which helps prevent SQL injection.
Tips for Working with Query Builder Effectively
- Use Aliases – Especially in JOINs or long queries. It keeps your code cleaner.
- Always Escape User Input – Even though Query Builder helps protect you, avoid directly concatenating user input into query parts.
- Debug Your Queries – Use
$query->createCommand()->rawSqlto see the actual SQL generated. Very handy during testing. - Use Active Record When Appropriate – If you're dealing with full models and relationships, sometimes ActiveRecord is better than Query Builder.
Using Query Builder in Yii simplifies interacting with databases while keeping your codebase safe and maintainable. Whether you're selecting filtered data or updating multiple records, building queries this way avoids messy SQL strings and improves readingability.
Basically that's it.
The above is the detailed content of How do I use query builder in Yii?. For more information, please follow other related articles on the PHP Chinese website!
Hot AI Tools
Undress AI Tool
Undress images for free
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Clothoff.io
AI clothes remover
Video Face Swap
Swap faces in any video effortlessly with our completely free AI face swap tool!
Hot Article
Hot Tools
Notepad++7.3.1
Easy-to-use and free code editor
SublimeText3 Chinese version
Chinese version, very easy to use
Zend Studio 13.0.1
Powerful PHP integrated development environment
Dreamweaver CS6
Visual web development tools
SublimeText3 Mac version
God-level code editing software (SublimeText3)
What are Yii asset bundles, and what is their purpose?
Jul 07, 2025 am 12:06 AM
YiiassetbundlesorganizeandmanagewebassetslikeCSS,JavaScript,andimagesinaYiiapplication.1.Theysimplifydependencymanagement,ensuringcorrectloadorder.2.Theypreventduplicateassetinclusion.3.Theyenableenvironment-specifichandlingsuchasminification.4.Theyp
How do I render a view from a controller?
Jul 07, 2025 am 12:09 AM
In the MVC framework, the mechanism for the controller to render views is based on the naming convention and allows explicit overwriting. If redirection is not explicitly indicated, the controller will automatically find a view file with the same name as the action for rendering. 1. Make sure that the view file exists and is named correctly. For example, the view path corresponding to the action show of the controller PostsController should be views/posts/show.html.erb or Views/Posts/Show.cshtml; 2. Use explicit rendering to specify different templates, such as render'custom_template' in Rails and view('posts.custom_template') in Laravel
How do I create custom actions in a Yii controller?
Jul 12, 2025 am 12:35 AM
The method of creating custom operations in Yii is to define a common method starting with an action in the controller, optionally accept parameters; then process data, render views, or return JSON as needed; and finally ensure security through access control. The specific steps include: 1. Create a method prefixed with action; 2. Set the method to public; 3. Can receive URL parameters; 4. Process data such as querying the model, processing POST requests, redirecting, etc.; 5. Use AccessControl or manually checking permissions to restrict access. For example, actionProfile($id) can be accessed via /site/profile?id=123 and renders the user profile page. The best practice is
Yii Developer: Roles, Responsibilities, and Skills Required
Jul 12, 2025 am 12:11 AM
AYiidevelopercraftswebapplicationsusingtheYiiframework,requiringskillsinPHP,Yii-specificknowledge,andwebdevelopmentlifecyclemanagement.Keyresponsibilitiesinclude:1)Writingefficientcodetooptimizeperformance,2)Prioritizingsecuritytoprotectapplications,
How do I create a basic route in Yii?
Jul 09, 2025 am 01:15 AM
TocreateabasicrouteinYii,firstsetupacontrollerbyplacingitinthecontrollersdirectorywithpropernamingandclassdefinitionextendingyii\web\Controller.1)Createanactionwithinthecontrollerbydefiningapublicmethodstartingwith"action".2)ConfigureURLstr
Yii Developer Job Description: Key Responsibilities and Qualifications
Jul 11, 2025 am 12:13 AM
AYiideveloper'skeyresponsibilitiesincludedesigningandimplementingfeatures,ensuringapplicationsecurity,andoptimizingperformance.QualificationsneededareastronggraspofPHP,experiencewithfront-endtechnologies,databasemanagementskills,andproblem-solvingabi
How do I use the ActiveRecord pattern in Yii?
Jul 09, 2025 am 01:08 AM
TouseActiveRecordinYiieffectively,youcreateamodelclassforeachtableandinteractwiththedatabaseusingobject-orientedmethods.First,defineamodelclassextendingyii\db\ActiveRecordandspecifythecorrespondingtablenameviatableName().Youcangeneratemodelsautomatic
How do I log security events in Yii?
Jul 11, 2025 am 12:07 AM
Recording security events in Yii can be achieved by configuring log targets, triggering key event logs, considering database storage, and avoiding recording sensitive information. The specific steps are as follows: 1. Set a dedicated log target in the configuration file, such as FileTarget or DbTarget, and specify the classification as 'security'; 2. Use Yii::info() or Yii::warning() to record the log when a critical security event (such as login failure and password reset) occurs; 3. Optionally store the logs in the database for query and analysis, and you need to create a table first and configure the logTable parameters; 4. Avoid including sensitive data, such as passwords or tokens when recording context information, and you can use parameter replacement to add IP and username; 5
