Re: escaping single quotes in sql query

2002-06-11 Thread Paul DuBois
>Dear Paul, > >I don't understand your reply, or how your examples relate to single quote >marks in any way. > >Sorry to be so dense! > >I am just trying to keep mySQL from freaking out when it sees a quotation >mark -- all I need to do is replace every occurrence of ' with \', e.g. >if I were ins

Re: escaping single quotes in sql query

2002-06-11 Thread Morris Hirsch
If you use the ? in your SQL statement and put the evil string that has quotes between It's OK here tags you should be alright. It is not really SQL that minds, just need a way to be clear about what you are passing to SQL. Hope this helps (and is correct) Morris On Tue, 11 Jun 2002, Carole

Re: escaping single quotes in sql query

2002-06-11 Thread Carole E. Mah
Dear Paul, I don't understand your reply, or how your examples relate to single quote marks in any way. Sorry to be so dense! I am just trying to keep mySQL from freaking out when it sees a quotation mark -- all I need to do is replace every occurrence of ' with \', e.g. if I were inserting a

Re: escaping single quotes in sql query

2002-06-11 Thread Paul DuBois
At 14:12 -0400 6/11/02, Carole E. Mah wrote: >DBtags has an 'escapeSql' tag, but JSTL:sql does not. Use in your or tag body, and use ? as a placeholder character in the query string. <%-- placeholder value in body --%> DELETE FROM tbl_name WHERE id > ? 100 <%-- placeholder

escaping single quotes in sql query

2002-06-11 Thread Carole E. Mah
DBtags has an 'escapeSql' tag, but JSTL:sql does not. So, using JSTL, how does one escape single quotes? Thank you, -carole - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Carole E. Mah [EMAIL PROTECTED] Senior Programmer/Analyst Brown University Sc

RE: single Quotes in SQL

2002-05-16 Thread James Mitchell
Not sure if you got the answer to this. single quotes should be changed to double single quotes (not " but '') JM > -Original Message- > From: Shawn Bayern [mailto:[EMAIL PROTECTED]] > Sent: Thursday, May 16, 2002 5:19 PM > To: Tag Libraries Users List &

Re: single Quotes in SQL

2002-05-16 Thread Shawn Bayern
On Thu, 16 May 2002, DAVE ANAND wrote: > How you handle single Quotes in the sql stmt inside > an sql tag. It's best to use PreparedStatement behind the scenes. For instance, you can use JSTL's tag inside a tag: select * from users where last_name=? Of course, 'value' can po

single Quotes in SQL

2002-05-16 Thread DAVE ANAND
How you handle single Quotes in the sql stmt inside an sql tag. -- To unsubscribe, e-mail: For additional commands, e-mail: