Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations bkrike on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

PREPARE A SQL STATEMEMT 1

Status
Not open for further replies.
ttkong

ttkong

Programmer
Jun 5, 2002
22
MY
Hi all,

I have the following 4GL codes:

LET str = "INSERT INTO ", local_path, ":table1",
" VALUES ('", client_name, "' ")

PREPARE qid FROM str
EXECUTE qid

It executes perfectly. However, when there is a single quote (') in "client_name" variable, Syntax Error would occur.

For example,
if client_name = "King's Name",
str = INSERT INTO db@dbtcp:table1 VALUES ('King's Name')

The system would take "King" as the first input field, and the subsequent "s Name'" as invalid syntax.

I need to know is there any way to resolve the above problem. It is urgent. Thank you very much.

Rgrds,
TTKong


 
Sort by date Sort by votes
Hi

The best way is to change your statement to read as follows:

LET str = "INSERT INTO ", local_path, ":table1",
" VALUES (?) "

The "?" acts as a place holder for a program variable you
will be using during the EXECUTE statement.

The PREPARE statement stays the same, but the execute statement then changes by using a program variable, e.g.

EXECUTE qid using m_client_name

This also a cleaner way of doing it.

Hope this helps

 
Upvote 0 Downvote
Hi:

Interesting problem. First, Erhard's post is correct; Use host variables.

But, if for some reason, you don't, use double quotes and escape them when building str instead of single quotes:

LET str = "INSERT INTO ", local_path, ":table1",
" VALUES (\"", client_name clipped, "\") "

Of course, potentially you still have the same problem with the double quote. I haven't figured a way to escape " in the insert statement, so delete or replace it before building str:

LET client_name = replace(client_name, "\"", " ")

(The 4GL replace function mentioned above exists in the 4GL FAQ)

Erhard's suggestion is still the way to go.

Regards,

Ed
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

daYorkie
  • Locked
  • Question
How many UNIONs can i use in a single query?
Replies
2
Views
378
daYorkie
daYorkie
jamescpp
  • Locked
  • Question
listener-thread: err = -25572: oserr = 226: errstr = : Network driver cannot bind a name to the port
Replies
0
Views
370
jamescpp
jamescpp
cwbloucks
  • Locked
  • Question
Informix SQL Update using an inner join
Replies
0
Views
470
cwbloucks
cwbloucks
evgeniosc
  • Locked
  • Question
Copy rows as they inserted on a replica table using trigger
Replies
0
Views
295
evgeniosc
evgeniosc
kray4660
  • Locked
  • Question
Trying to do a count on logged in users
Replies
1
Views
364
kray4660
kray4660

Part and Inventory Search

Sponsor

Back
Top