Just "a pointer" to the following
>Any pointers?
>How do you filter your sql sensitive characters?
If you use java.sql.PreparedStatement you should not require any manual
characters filtering or escaping.
My two cents, Patrick
Quoting Mike Whittaker <[EMAIL PROTECTED]>:
>
> Okay, no one seems
Okay, no one seems to have any suggestions so having thought about this for
about a week now here is what I propose to do.
I'm just trying to implement very simple forms the struts way, prepopulation
& validation are not major concerns at the moment but I'd like to keep the
option open.
My main r
Sorry to be a pain
~~
Say for instance you want to filter for all the ' " \ characters in request
parameters
either removing them, or escaping them.
Either way if you do it before the action form gets them, then on
prepopulation of form fields the user will see these alterations (n
Say for instance you want to filter for all the ' " \ characters in request
parameters
either removing them, or escaping them.
Either way if you do it before the action form gets them, then on
prepopulation of form fields the user will see these alterations (not
desirable).
If you do it after you
4 matches
Mail list logo