Home > mailing lists

Re: [PROPOSAL] DML value format - Mailing list pgsql-general

From	Michael Glaesemann
Subject	Re: [PROPOSAL] DML value format
Date	August 13, 2007 16:28:45
Msg-id	9E224F0B-8CB3-4475-A5EB-EE942235038C@seespotcode.net Whole thread Raw
In response to	Re: [PROPOSAL] DML value format (Osvaldo Rosario Kussama <osvaldo_kussama@yahoo.com.br>)
List	pgsql-general

Tree view

On Aug 13, 2007, at 11:21 , Osvaldo Rosario Kussama wrote:

> Dollar-Quoted String Constants?
> http://www.postgresql.org/docs/8.2/interactive/sql-syntax-
> lexical.html#SQL-SYNTAX-CONSTANTS
>
> INSERT INTO persons VALUES ($$Harry$$, $$O'Callaghan$$);

Do not interpolate values into SQL literals, regardless of which
literal syntax you're using. Use bind parameters.

> Perhaps use quote_literal() function?
> http://www.postgresql.org/docs/8.2/interactive/functions-string.html

If you're writing a database adapter, maybe. Otherwise, use bind
parameters. They're easier and you shouldn't have to worry about
always remembering to use quote_literal.

Michael Glaesemann
grzm seespotcode net

pgsql-general by date:

From: Osvaldo Rosario Kussama
Date: 13 August 2007, 16:17:08
Subject: Re: [PROPOSAL] DML value format

From: "Scott Marlowe"
Date: 13 August 2007, 16:30:07
Subject: Re: Persistent connections in PHP

Re: [PROPOSAL] DML value format - Mailing list pgsql-general

Previous

Next