Skip site navigation (1) Skip section navigation (2)

Re:

From: Bill Cunningham <billc(at)bally(dot)com>
To: gfchelp(at)gflesch(dot)com
Cc: "Pgsql-Admin (E-mail)" <pgsql-admin(at)postgreSQL(dot)org>
Subject: Re:
Date: 1998-11-30 22:33:06
Message-ID: 36631D22.33F1A4F0@bally.com (view raw or flat)
Thread:
Lists: pgsql-adminpgsql-interfaces
Ken Wills wrote:

> Hi!
>
> I have an annoying problem, that I just haven't been able to get around yet. When I parse the
> input from a form and go to insert it eveything works fine as long as the user doesn't use
> the ' character in the input. I've tried using qw{} and qq{}, which either don't interpolate
> or give me errors. Anyone have any suggestions? Postgres 6.4, Apache 1.3, mod_perl 1.16.
> The insert statement is below.
>
> my $query_string=qq{INSERT INTO CALLS (ca_service_id, ca_org_name, ca_phone_number, ca_status,
> ca_product, ca_problem, ca_resolution, ca_contact_name, ca_assigned, ca_date) VALUES ('$service_id',
> '$org_name', '$phone_number', '$status', '$product', '$problem', '$resolution', '$contact',
> '$assigned', '$time_now')};
>

I have the same problem with DB2. I encode the ' character as &39 or 0x39. Then on output I reparse the
field and display the results. (I also encode the & character or whatever I use to delimit the
character.)


--
Bill Cunningham
Database Development Project Lead
Bally Systems




In response to

  • at 1998-11-23 13:38:02 from Ken Wills

Responses

pgsql-admin by date

Next:From: Terry MackintoshDate: 1998-12-01 00:56:27
Subject: Re: [ADMIN] Re:
Previous:From: Fridiric NOURRYDate: 1998-11-30 17:13:43
Subject: pg_ident.conf with version 6.4

pgsql-interfaces by date

Next:From: Peter T MountDate: 1998-11-30 23:02:58
Subject: Re: [INTERFACES] 1.2 JVM and such
Previous:From: Dallas HockleyDate: 1998-11-30 18:59:25
Subject: 1.2 JVM and such

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group