Re: Wrong sintax...? GOT IT!

From: Jerry III (jerryiii_at_hotmail.com)
Date: 02/22/04 

Date: Sun, 22 Feb 2004 14:13:34 -0800

It's a lot easier to use command object with parameters. Then the provider
will escape anything that needs to be escaped for you.

Jerry

"Frank Hickman" <fhickman_nosp@m_noblesoft.com> wrote in message
news:pdqdnQ_x1Zg-vqTdRVn-tA@comcast.com...
> You can keep the embedded quotes but you must use the SQL method for
> representing them...
>
> Say you have the string "That's how the cookie crumbles." To insert this
> string into the field you would have to make the string contain."That'''s
> how the cookie crumbles." So you would need to write a function that adds
> this or you, something like this...
>
> CString& FixQuotes( CString& strInput )
> {
> CString strIn( strInput );
> int nNdx= 0;
> for( int nPos= 0; nPos < strIn.GetLength(): nPos++ )
> {
> strInput[nNdx]= strIn[nPos];
> if ( strIn[nPos] == _T('\'') )
> {
> strInput += _T("''");
> nNdx += 2;
> }
> else
> {
> ++nNdx;
> }
> }
> return strInput;
> }
>
> CString strVal= _T("That's how the cookie crumbles.");
> strVal= FixQuotes( strVal );
>
> strVal should now contain: That'''s how the cookie crumbles.
>
> This is off the top of my head so you may need to tweak it.
>
> HTH
> --
> ============
> Frank Hickman
> NobleSoft, Inc.
> ============
> Replace the _nosp@m_ with @ to reply.
>
>
> "damned" <damned@iol.pt> wrote in message
> news:uEXeKsY%23DHA.2592@TK2MSFTNGP10.phx.gbl...
> > eheheh (dumb damned)
> >
> > Now this leads me to another problem...
> > I need to insert the quotes also!
> >
> > Must I first parse the quotes, then insert the data and then, finaly,
> parse
> > the quotes back again? Or is there a better way to accomplish this?
> >
> > Regards,
> > damned
> >
> > "Frank Hickman" <fhickman_nosp@m_noblesoft.com> wrote in message
> > news:7Zednbl_lrEGE6vdRVn-hw@comcast.com...
> > > Glad you got it! Yep, embedded quotes will get ya just about
everytime
> :)
> > >
> > > --
> > > Frank
> > >
> > >
> > > "damned" <damned@iol.pt> wrote in message
> > > news:eO%23GWJA%23DHA.3648@TK2MSFTNGP11.phx.gbl...
> > > > Frank,
> > > >
> > > > The tags were only for marking script block (wrong choice).
> > > >
> > > > I've found the problem!
> > > > Some of the field data contains the "'" character. So the
> concatenation
> > of
> > > > "INSERT INTO MyTable (Field1) VALUES ('" & strVar & "')" results in
> > error!
> > > > (''/ab/'').
> > > > I must strip all data before insering.
> > > >
> > > > My first code example missled you. I gave an hardcoded example.
Sorry.
> > > >
> > > > Regards,
> > > > damned
> > > >
> > > > "Frank Hickman" <fhickman_nosp@m_noblesoft.com> wrote in message
> > > > news:4qqdnbSBQtoi-6vdRVn-hw@comcast.com...
> > > > > Yes they did :) Are they part of your script or did you just use
> them
> > > to
> > > > > show the start and end of your code? Or is your script in an html
> > file
> > > > that
> > > > > you want to use ASP in?
> > > > >
> > > > > Here is my adotest.vbs script which also works...
> > > > >
> > > > > ****** Start ******
> > > > >
> > > > > Option Explicit
> > > > >
> > > > > Dim conDB
> > > > > Set conDB = CreateObject("ADODB.Connection")
> > > > > With conDB
> > > > > .Open "DSN=MyDatabase"
> > > > > .Execute "INSERT INTO MyTable (Field1) VALUES ('\ab\')"
> > > > > .Close
> > > > > End With
> > > > > Set conDB = Nothing
> > > > >
> > > > >
> > > > > ****** End ******
> > > > >
> > > > > --
> > > > > Frank
> > > > >
> > > > > "damned" <damned@iol.pt> wrote in message
> > > > > news:ufZd3d%239DHA.1428@TK2MSFTNGP12.phx.gbl...
> > > > > > Frank,
> > > > > >
> > > > > > It's a .vbs administrative script.
> > > > > > Maybe using the "<%"/"%>" tags confused you.
> > > > > >
> > > > > > Regards,
> > > > > > damned
> > > > > >
> > > > > > "Frank Hickman" <fhickman_nosp@m_noblesoft.com> wrote in message
> > > > > > news:lMWdnVHj-Lj8SajdRVn-tA@comcast.com...
> > > > > > > Okay that confused me. How are you executing the script? In
IE
> > or
> > > do
> > > > > you
> > > > > > > have a command line asp processor?
> > > > > > >
> > > > > > > "damned" <damned@iol.pt> wrote in message
> > > > > > > news:e6x0YG59DHA.4064@TK2MSFTNGP09.phx.gbl...
> > > > > > > > Frank,
> > > > > > > >
> > > > > > > > Thank you for your interest and testing work.
> > > > > > > >
> > > > > > > > I don't have IUSR_ & IWAM_ accounts on the PC running the
> > script.
> > > No
> > > > > IIS
> > > > > > > is
> > > > > > > > installed there. It's an administrativ
> > > > > Conript.
> > > > > > > >
> > > > > > > > Regards,
> > > > > > > > damned
> > > > > > > >
> > > > > > >
> > > > > > >
> > > > > >
> > > > > >
> > > > >
> > > > >
> > > >
> > > >
> > >
> > >
> >
> >
>
>

Relevant Pages

  • Re: Wrong sintax...? GOT IT!
    ... > CString strIn(strInput); ... That'''s how the cookie crumbles. ... >> I need to insert the quotes also! ... >> Must I first parse the quotes, then insert the data and then, finaly, ...
    (microsoft.public.data.ado)
  • Re: A critique of cgi.escape
    ... and quotes should always be escaped. ... Making cgi.escape always escape the '"' character would not break ... and would probably fix a few bugs in existing code. ...
    (comp.lang.python)
  • Re: Launch chm file on WS within HTML
    ... escape another. ... However, in Java Script, the rules are ... The command line cd ... |> | and only surrounded the file path with two double quotes. ...
    (microsoft.public.scripting.wsh)
  • Re: [PHP] str_replace oddity
    ... it uses backslashes to escape where the quotes were. ... but the ghost remains and mysql continues to escape them. ... is $string honestly something that you are getting via a form submit? ...
    (php.general)
  • Re: Wrong sintax...? GOT IT!
    ... >> CString& FixQuotes ... CString strIn(strInput); ... >> Frank Hickman ... >>> I need to insert the quotes also! ...
    (microsoft.public.data.ado)