Re: Sanitizing SQL string
Re: Sanitizing SQL string
- Subject: Re: Sanitizing SQL string
- From: Chuck Hill <email@hidden>
- Date: Thu, 24 Jan 2008 08:10:13 -0800
Can you be more specific on the SQL that you need to generate. EOF
can do much of it for you and Wonder has several options for such
batch operations, for example
ERXEOAccessUtilities.updateRowsDescribedByQualifier(EOEditingContext
ec, String entityName, final EOQualifier qualifier, final
NSDictionary newValues). If you can use something like that, you can
let EOF worry about the strings.
Chuck
On Jan 24, 2008, at 8:03 AM, Miguel Arroz wrote:
Hi!
I need to do an SQL query to do a batch operation on the DB (yes
yes, I know, but trust me, I know what I'm doing).
Usually I only have to deal with PKs and integers and so, but on
this specific query I have to handle a text string match (ie,
UPDATE blabla WHERE something = 'myText' ). How do I propertly
sanitize the string (and escape it and whatever) before sending it
to the SQL query? I'm trying to avoid this: <http://
farm3.static.flickr.com/2160/1619915433_fdca91a23e.jpg>.
Yours
Miguel Arroz
Miguel Arroz
http://www.terminalapp.net
http://www.ipragma.com
--
Practical WebObjects - for developers who want to increase their
overall knowledge of WebObjects or who are trying to solve specific
problems.
http://www.global-village.net/products/practical_webobjects
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden