| From: | Gilles DAROLD <gilles(at)darold(dot)net> |
|---|---|
| To: | |
| Cc: | pgsql-general(at)postgresql(dot)org |
| Subject: | Re: illegal characters |
| Date: | 2001-02-09 19:48:07 |
| Message-ID: | 3A844977.CFBEEAF1@darold.net |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
Hi,
I don't know what programming language you are using but there's
surely a function named quote which will do that for you.
With perl DBI you can use it like this :
quote :
Quote a string literal for use as a literal value in an SQL statement
by
escaping any special characters (such as quotation marks) contained
within the string and adding the required type of outer quotation
marks.
$sql = $dbh->quote($string);
Regards
Gilles DAROLD
Oleg Lebedev wrote:
> Hello,
> I am using postgresql to store data passed from a web page. A user may
> enter whatever text she wants on that web page. Do I have to prepend all
> the illegal characters in the text with backslashes before storing the
> text in the database? Is there any way to make postgresql prepend these
> illegal characters for me?
> Example:
> I have an entry 'foo/bar' in a database table (it was stored as
> 'foo/bar' NOT as 'foo\/bar', when I try to search for all rows that
> contain entry 'foo/bar', I get no results.
> Any help will be greatly appreciated.
> Thanks
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tiger Technologies | 2001-02-09 20:33:37 | Postmaster uses Large Amounts of Swap |
| Previous Message | Oleg Lebedev | 2001-02-09 19:43:34 | illegal characters |