public function actionSearch($enviar_a = null) { $table = new Alumnos(); $model = null; //$table->find()->all(); $form = new FormSearch(); $search = null; if ($form->load(Yii::$app->request->get())) { if ($form->validate()) { //Esto previene ataques del tipo xss $search = Html::encode($form->q); if ($search == "todos") { $search = ""; $query = "SELECT * FROM alumnos WHERE p_nombre LIKE '%{$search}%' OR "; $query .= "p_apellido LIKE '%{$search}%' OR servicio LIKE '%{$search}%' OR "; $query .= "mail LIKE '%{$search}%' OR horario LIKE '%{$search}%'"; $model = $table->findBySql($query)->all(); } else { if ($search == "limpiar" || $search == "") { $model = null; } else { $query = "SELECT * FROM alumnos WHERE p_nombre LIKE '%{$search}%' OR "; $query .= "p_apellido LIKE '%{$search}%' OR servicio LIKE '%{$search}%' OR "; $query .= "mail LIKE '%{$search}%' OR horario LIKE '%{$search}%'"; $model = $table->findBySql($query)->all(); } } } else { $form->getErrors(); } } //$user = User::find()->where(['name' => 'CeBe'])->one(); return $this->render('search', ['model' => $model, "form" => $form, "search" => $search, "enviar_a" => $enviar_a]); }
public function actionViewViejo() { $table = new Alumnos(); /* Metodo que me trae todos los registro de la tabla */ $model = $table->find()->all(); $form = new FormSearch(); /* Variable que contendra la busqueda */ $search = null; /* Si el formulario es envio por get*/ if ($form->load(Yii::$app->request->get())) { if ($form->validate()) { /* Metodo encode para evitar ataques del tipo xss */ $search = Html::encode($form->q); /* Consulta sql */ $query = "SELECT * FROM alumnos WHERE id_alumno LIKE '%{$search}%' OR "; $query .= "nombre LIKE '%{$search}%' OR apellidos LIKE '%{$search}%'"; /* Guardamos en la variable model los datos que nos traera la consulta */ $model = $table->findBySql($query)->all(); } else { $form->getErros(); } } return $this->render("view", ['model' => $model, "form" => $form, "search" => $search]); }