| From: | Thomas O'Dowd <tom(at)nooper(dot)com> |
|---|---|
| To: | Timothy Reaves <treaves(at)silverfields(dot)com> |
| Cc: | "pgsql-jdbc(at)postgresql(dot)org" <pgsql-jdbc(at)postgresql(dot)org> |
| Subject: | Re: Escaping strings? |
| Date: | 2002-11-04 02:14:00 |
| Message-ID: | 1036376040.13828.21.camel@beast.uwillsee.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-jdbc |
Use the setString() method of PreparedStatement and it will escape
things for you.
Tom.
On Mon, 2002-11-04 at 11:06, Timothy Reaves wrote:
> What is the proper way to insure a text string (i.e. one read from a
> JTextField.getText()) is propery escaped? I assumed the JDBC driver would
> do this automatically, but it does not. An ' character will cause the
> JDBC driver to throw an exception.
>
> ---------------------------(end of broadcast)---------------------------
> TIP 5: Have you checked our extensive FAQ?
>
> http://www.postgresql.org/users-lounge/docs/faq.html
--
Thomas O'Dowd, CEO, Nooper.com - Mobile Services Inc., Tokyo, Japan
i-mode & FOMA consulting, development, testing: http://nooper.co.jp/
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Timothy Reaves | 2002-11-04 02:35:12 | Re: Escaping strings? |
| Previous Message | Timothy Reaves | 2002-11-04 02:06:27 | Escaping strings? |