cruim's questions

如何对 SQL 查询进行转义以避免SQL 注入？

def getStackArea(screen_area):
    db = postgresql.open(db_conf.connectionString())
    data = db.query("select stack_area from screen_coordinates where screen_area = " + screen_area + " and active = 1")
    return data[0]['stack_area']

有list整数排序。大小 - 从 4 到 5 个元素。如何确定集合中的4个数字是否为自然数？也许有比（例如一些内置函数）更好的东西：

if len(arr) > 4 and (int(arr[-1]) - int(arr[1]) == 3 or int(arr[3]) - int(arr[0]) == 3):
    return True
elif int(arr[3]) - int(arr[0]) == 3:
    return True
else:
    return False

有一个表，其中有一个列created_at，例如timestamp default now()。如果我从 ide 提出这样的要求

insert into error_log(module_name, error_message)
select 'test','test'

时间是正确的。如果调用此函数：

def errorLog(module_name, error_message):
    error_message = (error_message[:250] + '..') if len(error_message) > 250 else error_message
    db = postgresql.open(db_conf.connectionString())
    insert = db.prepare("insert into error_log (module_name,error_message) values($1,$2)")
    insert(module_name, str(error_message))

该记录创建时间为 3 小时。为什么会有这样的行为差异，我该如何解决？

在谷歌上找不到答案。问题，结构如（x 是一个整数）

if x > 14: do something

和

if x >= 15: do something

会有相同的执行时间吗？

我正在尝试为变量属性分配一个值。这是一段代码

def __init__(self):
    def getCurrenValue( screen_area):
        # self.screen_area = screen_area
        db = postgresql.open(db_conf.connectionString())
        data = db.query("select active from screen_coordinates where screen_area = " + str(screen_area))
        return data[0]['active']
    print(getCurrenValue(1))
    # first = 1
    first = (getCurrenValue(1))
    # first = first.get()
    print(first)
    tkinter.Tk.__init__(self)
    threading.Thread.__init__(self)
    self.wait = 1
    self.setDaemon(True)
    self.start()
    self.geometry('150x150')
    self.title('Calculator')
    self.columnconfigure(1, pad=5)

    tkinter.Checkbutton(text="1", variable=first, onvalue=1, offvalue=0).grid(row=3, column=2)
    print(first)

打印输出都给出“1”，但表格未选中。我只是试图分配一个同样未经检查的单元。可能是什么问题呢？

有一个小程序可以在图像中搜索给定元素，并使用圈出的找到的元素保存新图像。

import cv2
import numpy as np

img_rgb = cv2.imread('mario.jpg')
img_gray = cv2.cvtColor(img_rgb, cv2.COLOR_BGR2GRAY)
template = cv2.imread('mario_template.jpg',0)
w, h = template.shape[::-1]

res = cv2.matchTemplate(img_gray,template,cv2.TM_CCOEFF_NORMED)
threshold = 0.8
loc = np.where( res >= threshold)
for pt in zip(*loc[::-1]):
    cv2.rectangle(img_rgb, pt, (pt[0] + w, pt[1] + h), (0,0,255), 2)

cv2.imwrite('res.png',img_rgb)

问题是如何剪切和保存找到的元素？

我正在做一个不区分大小写的排序。

$sort = new CSort;
$sort->multiSort=true;
$sort->defaultOrder = 'is_active DESC, lower(filter_name) asc'; //сортировка фильтров по алфавиту, сначала активные потом неактивные

$this->widget('bootstrap.widgets.BsListView', array(
    'dataProvider' => new CArrayDataProvider($filters, array(
        'sort'=>$sort,
        'pagination'=>array(
            'pageSize' => count($filters),
        )
    )),

但它仍然先打印'BBB'，然后打印'bbb'。ide 中的请求正确完成。select filter_name,id from tbl_filters where users_id = 16173 order by is_active DESC, lower(filter_name)可能是什么问题呢？

我正在制作一个电报机器人。我正在使用laravel和Telegram Bot SDK。今天我遇到了一个问题，机器人递归地向用户发送相同的屏幕截图响应。或者只是“我认为”的信息。

 \Telegram::sendMessage([
                    'chat_id' => $chatid,
                    'text' => "Считаю...",
                ]);

                $controller = $this->getReportControllerName($text);
                $method = $this->getReportMethodName($text);
                $report_data = new $controller();
                $report_data = $report_data->$method($chatid);

                try
                {
                    \Telegram::sendMessage([
                        'chat_id' => $chatid,
                        'text' => $report_data,
                    ]);
                }
                catch (TelegramResponseException $e)
                {
                    $errorData = $e->getResponseData();

                    if ($errorData['ok'] === false) {
                        \Telegram::sendMessage([
                            'chat_id' => '123456789',
                            'text'    => 'There was an error for a user. ' . $errorData['error_code'] . ' ' . $errorData['description'],
                        ]);
                    }
                }`

try-catch确定问题后设置块。日志中有 499 和 500 错误。关于错误处理的问题，以避免来自机器人的垃圾邮件。是否有必要在其他地方捕获错误。如何登录，包括服务器状态代码？

有一个查询显示每小时的小时数和平均订单处理时间。

SELECT
    createdhour,
    SEC_TO_TIME(
        sum(
            TIMESTAMPDIFF(
                SECOND,
                createdtime_spec,
                first_status_change
            )
        ) / count(*)
    ) AS 'РФ'
WHERE
    createdtime BETWEEN '2017-07-01'
AND '2017-07-20'
AND department IN ('РФ')
GROUP BY
    createdhour

问题是，如何在下一列中不同地显示每小时的平均订单处理时间department？这样做了

SELECT department,
    createdhour,
    case when department = 'РФ' then
SEC_TO_TIME(
        sum(
            TIMESTAMPDIFF(
                SECOND,
                createdtime_spec,
                first_status_change
            )
        ) / count(*)
    )end AS 'РФ',
    case when department = 'ЕС' then
SEC_TO_TIME(
        sum(
            TIMESTAMPDIFF(
                SECOND,
                createdtime_spec,
                first_status_change
            )
        ) / count(*)
    )end AS 'ЕС'
from report_designer
WHERE
    createdtime BETWEEN '2017-07-01'
AND '2017-07-20'
AND department IN ('РФ','ЕС')
GROUP BY
    createdhour,department

像这样发出：

数据是正确的，但是如何去掉空值呢？

有一行分隔符是逗号。我将它转换成一个数组，然后将其设为唯一并将其转换回字符串。

arr = searchValue.split(',');
arr = arr.filter( onlyUnique );
searchValue = arr.join(',');

function onlyUnique(value, index, self) {
    return self.indexOf(value) === index;
}

问题是如何使特定的数组元素唯一？

这样的要求

SELECT
    *
FROM
    integration_betapost.`tests_st`
WHERE
    add_date = CURDATE()

which只显示两行，where add_dateis equal 2017-06-02 00:00:00，虽然表中type的值很多 。2017-06-02 14:02:07 问题，为什么不包括在选择中？

有一个请求

SELECT
    salesorderid,
    integration_betapost.goods_to_products.shipping_order_row_good_id,
    vtiger_inventoryproductrel.quantity
FROM
    vtiger_salesorder
INNER JOIN vtiger_inventoryproductrel ON vtiger_salesorder.salesorderid = vtiger_inventoryproductrel.id
INNER JOIN vtiger_products ON vtiger_inventoryproductrel.productid = vtiger_products.productid
INNER JOIN integration_betapost.goods_to_products ON vtiger_products.productid = integration_betapost.goods_to_products.productid
WHERE
    sostatus = 'Отправлять'

其中显示表单结果的结果 问题是，如何计算具有相同的行的总和以及具有相同的 salesorderid行的总和？salesorderidshipping_order_row_good_id

如何根据所选元素设置选择背景？例如，如果你这样做

#some-select option:first-child{
  background-color: #FFEBFA;
}

然后下拉列表中第一项的背景将发生变化。选择第一个元素时，有必要更改选择本身的背景。

有两个数组$first = ['one','two','three'];$second= ['five','four','three']; 问题是如何检查相同的元素，比如

if(in_array($first,$second)){
echo 'yes'}
else {echo 'no'}

该变量包含一个数组

Array ( 
  [1] => Array ( 
      [1] => 4 
      [5] => 7 
  ) 
  [2] => Array ( 
      [1] => 2 
      [5] => 5 
  ) 
  [3] => Array ( 
      [1] => 2 
      [5] => 5 
  ) 
  [4] => Array (
      [1] => 6 
      [5] => 9 
  )
  [5] => Array (
      [1] => 6 
      [5] => 8 
  )
)

问题是，如何在没有硬编码的情况下计算嵌套数组中索引为 [1] 和索引为 [5] 的元素的总和？

有这段代码：

$autocomplete = "SELECT  productid
                                  FROM vtiger_products";
                $db = PearDatabase::getInstance();

                $result = $db->pquery($autocomplete);
                $count_row = $db->num_rows($result);

                $valueArray = array();

                if ($count_row > 0) {
                        for ($i = 0; $i < $count_row; ++$i)
                        {
                                $valueArray[$i]['productid'] = $db->query_result($result, $i, 'productid');
                        }}

哪个输出给出了这样的数组结果

我怎样才能得到这样的数组：

Array
(
    [0] => 2
    [1] => 8
    [2] => 10
    [3] => 12
    [4] => 17
    [5] => 18

我做了一个三重左/右连接，以在三列中显示三个查询的结果。

SELECT t1.order_number as order_t1, t2.order_number as order_t2, t3.order_number as order_t3 FROM
        (       SELECT order_number,`order`.order_id 
                FROM `order` 
                inner join order_delivery_data on `order`.order_id = order_delivery_data.order_id
                where order_status = 'delivered' AND order_statusUpdatedAt >= DATE_SUB(CURRENT_DATE, INTERVAL 7 DAY)
                and order_delivery_data_name in ('Казахстан Курьеры')

        ) as t1
        LEFT JOIN
        (SELECT order_number,`order`.order_id 
                FROM `order` 
                inner join order_delivery_data on `order`.order_id = order_delivery_data.order_id
                where order_status = 'delivered' AND order_statusUpdatedAt BETWEEN  DATE_SUB(CURRENT_DATE, INTERVAL 10 DAY) 
                AND  DATE_SUB(CURRENT_DATE, INTERVAL 7  DAY)
                and order_delivery_data_name in ('Казахстан Курьеры')
        ) as t2
        ON t1.order_id  = t2.order_id
LEFT JOIN
        (SELECT order_number,`order`.order_id 
                FROM `order` 
                inner join order_delivery_data on `order`.order_id = order_delivery_data.order_id
                where order_status = 'delivered' AND order_statusUpdatedAt BETWEEN  DATE_SUB(CURRENT_DATE, INTERVAL 60 DAY) 
AND  DATE_SUB(CURRENT_DATE, INTERVAL 10  DAY)
                and order_delivery_data_name in ('Казахстан Курьеры')
        ) as t3
        ON t2.order_id  = t3.order_id
    UNION ALL
        SELECT t1.order_number as order_t1, t2.order_number as order_t2, t3.order_number as order_t3 FROM
        (       SELECT order_number,`order`.order_id 
                FROM `order` 
                inner join order_delivery_data on `order`.order_id = order_delivery_data.order_id
                where order_status = 'delivered' AND order_statusUpdatedAt >= DATE_SUB(CURRENT_DATE, INTERVAL 7 DAY)
                and order_delivery_data_name in ('Казахстан Курьеры')

        ) as t1
        RIGHT JOIN
        (SELECT order_number,`order`.order_id 
                FROM `order` 
                inner join order_delivery_data on `order`.order_id = order_delivery_data.order_id
                where order_status = 'delivered' AND order_statusUpdatedAt BETWEEN  DATE_SUB(CURRENT_DATE, INTERVAL 10 DAY) 
                AND  DATE_SUB(CURRENT_DATE, INTERVAL 7  DAY)
                and order_delivery_data_name in ('Казахстан Курьеры')
        ) as t2
        ON t1.order_id  = t2.order_id
RIGHT JOIN
        (SELECT order_number,`order`.order_id 
                                FROM `order`
                inner join order_delivery_data on `order`.order_id = order_delivery_data.order_id
                where order_status = 'delivered' AND order_statusUpdatedAt BETWEEN  DATE_SUB(CURRENT_DATE, INTERVAL 60 DAY) 
AND  DATE_SUB(CURRENT_DATE, INTERVAL 10  DAY)
                and order_delivery_data_name in ('Казахстан Курьеры')
        ) as t3
       ON t2.order_id  = t3.order_id

正确显示第一列和第三列中的数据，只有第二列为空。如果不加入第三个查询，那么它会正确显示第一列和第二列的结果。为什么不能显示第二列的结果？是否可以从所有列中删除空值？更新。如果只对两个查询完成，那么它会在两列中显示数据

SELECT t1.order_number as order_t1, t2.order_number as order_t2 FROM
        (       SELECT order_number,`order`.order_id 
                FROM `order` 
                inner join order_delivery_data on `order`.order_id = order_delivery_data.order_id
                where order_status = 'delivered' AND order_statusUpdatedAt >= DATE_SUB(CURRENT_DATE, INTERVAL 7 DAY)
                and order_delivery_data_name in ('Казахстан Курьеры')

        ) as t1
        LEFT JOIN
        (SELECT order_number,`order`.order_id 
                FROM `order` 
                inner join order_delivery_data on `order`.order_id = order_delivery_data.order_id
                where order_status = 'delivered' AND order_statusUpdatedAt BETWEEN  DATE_SUB(CURRENT_DATE, INTERVAL 10 DAY) 
                AND  DATE_SUB(CURRENT_DATE, INTERVAL 7  DAY)
                and order_delivery_data_name in ('Казахстан Курьеры')
        ) as t2
        ON t1.order_id  = t2.order_id
    UNION ALL
        SELECT t1.order_number as order_t1, t2.order_number as order_t2 FROM
        (       SELECT order_number,`order`.order_id 
                FROM `order` 
                inner join order_delivery_data on `order`.order_id = order_delivery_data.order_id
                where order_status = 'delivered' AND order_statusUpdatedAt >= DATE_SUB(CURRENT_DATE, INTERVAL 7 DAY)
                and order_delivery_data_name in ('Казахстан Курьеры')

        ) as t1
        RIGHT JOIN
        (SELECT order_number,`order`.order_id 
                FROM `order` 
                inner join order_delivery_data on `order`.order_id = order_delivery_data.order_id
                where order_status = 'delivered' AND order_statusUpdatedAt BETWEEN  DATE_SUB(CURRENT_DATE, INTERVAL 10 DAY) 
                AND  DATE_SUB(CURRENT_DATE, INTERVAL 7  DAY)
                and order_delivery_data_name in ('Казахстан Курьеры')
        ) as t2
        ON t1.order_id  = t2.order_id

在网格中，其中一列被分配了以下值

'value' => function ($data) {

                $m = 'г';
                $g = 'с';
                $ps = 'пс';

                $summ = 0;
                $str = '';
                $strt = '';

                foreach($data->itemsOrder as $request) {
                    $summ = $request->order_items_quantity;
                    $str .=  (strlen($str))?', ': '';

                    $externalId = $request->orderInfo->order_items_offer_externalId;
                    if($externalId == 'cream-009-1' or $externalId == 'cream-009-2'){
                        $strt = $m;
                    }
                    elseif($externalId == 'cream-002-1' or $externalId == 'cream-002-2'){
                        $strt = $g;
                    }

                    elseif($externalId == 'cream-005-1' or $externalId == 'cream-005-2'){
                        $strt = $ps;

                    }
                    else{
                        $strt = '';
                    }
                    if(strstr($strt, $ps)){
                        $str .= $summ.$strt;
                    }
                    elseif(strstr($strt, $g)){
                        $str .=  $summ.$strt;
                    }
                    elseif(strstr($strt, $m)){
                        $str .=  $summ.$strt;
                    }
                    else{
                        $str .=  '';
                    }
                }

                return $str;
            },
        ],

输出形式为6пс, 2пс, 6г, 2г, 1с，如何将其转换为以下形式：8пс, 8г, 1с?

更新。找到了解决方案

您需要添加一列，在其中添加一行时，将写入星期几的名称。我尝试了几种类型并设置了默认值DAYNAME(CURDATE())，但没有用。大约随着时间的推移在这里实施

`add_time` datetime DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP

从站点卸载excel格式的数据时，弹出如下错误，我试过这样解决：

<?php
    ini_set('max_execution_time', 3600); //3600 seconds = 60 minutes
       $gridColumns = [
       'order_number',
  [

所以

echo ExportMenu::widget([ 'dataProvider' => $dataProvider, 
'columns' => $gridColumns, 
'stream' => false, 
'streamAfterSave' => true, 
'deleteAfterSave' => true, 
'target' => '_blank', ]) ?>

都一样 504