Reading XML file containing SQL statements that require variables from VB.NET program -


i have program written in vb.net , wrote sql statements hard-coded program. wanted try store queries externally in xml file changes can made sql (if needed) without having go code , rebuild program every single time.

the part complicating things sql statements require variables added run properly.

for example:

select name_first, name_last, email_id & eventname

with eventname being variable in program.

when set xml file, tried both of following:

    <data>         <loadsaves>               <sqlstatement><![cdata[select name_first, name_last, email_id &eventname&]]></sqlstatement>         </loadsaves>     </data>

and

    <data>         <loadsaves>               <sqlstatement><![cdata["select name_first, name_last, email_id from" & eventname]]></sqlstatement>         </loadsaves>     </data>

i needed cdata because without it, special characters make act weird.

my problem program doesn't substituting of variables because in both methods, program pulls entire thing string.

using first method, able put code in search &eventname& , replaces variable need in there. method worked defeats purpose of having sql externally easy modification, because if of sudden need attendeename instead of eventname, can change in xml file still need change code &attendeename& instead , substitute accordingly.

is there way can handle in more dynamic way instead of having hard coded. said, want able have sql in separate file easy modification if needed without having touch code, keeping in mind each of sql statements require variables added them before can run.

1: bad idea - can mess program or find easy ways hack it.

2: concatenating strings cannot @ run-time, design-time.

3: don't build sql statements using concatenation, can hacked or broken easily. should parameterize sql so:

select name_first, name_last, email_id @eventname

and when run command use addwithparamter , add parameter , value.

cmd.addwithparameter("@eventname","your value here")

Comments

Post a Comment

Popular posts from this blog

php - Submit Form Data without Reloading page -

i know question has been asked , answered bunch of times life of me can not solution work on code. believe if redo code, work properly, , in retrospect time i've spent on issue should have redone code...but beyond deadline , have working prototype up... can advise how update multiple forms on single page without reloading page? horrible @ php , complete noob js/jquery/ajax @ best. html/php in single file , believe causing me problems/is largest obstacle @ getting ajax form processing work. basically, want users to: select teams multiple dropdowns in form group 1 (league champs) , on update update db newly selected team without reloadding page. edit team scores per match , on score submit/update, update db new scores. for each requirement there multiple forms (1 each leagues, 1 each per match) have set class on each form id. everything works via php, form submission reloads page each time submitted , not ideal. i have tried ajax code here http://scotch.io/tutoria
Read more

linux - Rails running on virtual machine in Windows -

the reason why want switch ubuntu people said gems works better on linux on windows. i don't want macbook pro rails development since love windows , cannot stand lack of apps mac. moreover, people saying ubuntu "better" mac: http://www.reddit.com/r/ubuntu/comments/1bgj1s/are_there_advantages_of_ubuntu_over_os_x_for/ does virtual box work enough doesn't have lag @ all? using i7-3517u cpu 8gb memory. need program in environment lag-free , not sluggish. or there alternatives recommend? i unsure permission settings or complicated stuffs regarding terminal. i'll using terminal develop. i'm still quite new here development in linux. please kind me >< thanks. @holyxiaoxin pretty sure should asking on superuser instead. nevertheless, suggest install ubuntu in partition instead of running virtual machine. here's guide https://help.ubuntu.com/community/windowsdualboot also, yes. developing in virtual machine accurate, @ end experiment w
Read more

php - $params->set Array between square bracket -

i'm using k2 in joomla 3.3. i'm trying set params (items ids ) module k2_content item.php file. result must between brackets, like: ["96","68"] my code is: $query = "select * #__k2_items extra_fields_search = '$myautor' , catid !=1 " ; $db->setquery($query); $losautores = $db->loadobjectlist(); $result = array(); foreach ($losautores $key => $value) { $result[] = '" '.$value->id.' "'; } $string_version = implode(',', $result); $autoresfinal = '['.$string_version.']'; if test using print, looks ok. passing var pramas, 1064 error. $params->set('items', $autoresfinal); to test tried $autoresfinal = ["96","68"]; and works fine. idea why doesn't work? thank you. if assign ["x","y"] assigning an array . here transforming array in st
Read more