Insert Text to Mysql

[Khanjan]

Hi,

When i insert an article into my database table it works perfectly, but when i have a quote in mine article it can not be inserted.

What should i do to prevent this?

Here is an example of it.

insert into `afghan`.`nieuws`
(NIEUWSID, TITEL, CONTENT, AUTEUR, DATUM, NIEUWSTYPE)
values
(NIEUWSID, TITEL, CONTENT, AUTEUR, DATUM, NIEUWSTYPE)


If Content exist from an article like this:


Although this is a sad poem, I liked it because of the beauty in yearning for one's home where you grow up. The part that talks about the "gard alood" city also hit home.

it wont work, because a quote exist in the article "gard alood" , How should i solve this probleem.

 

[TonyGroves]

If the text is enclosed by double-quotes, then any double-quotes in the text must be changed to either two double-quotes, or a backslash and a double-quote. The same applies to single-quotes in a string enclosed by single-quotes.

For example:
"about the \"gard alood\" city"
and
"about the ""gard alood"" city"
and
'about the "gard alood" city'
are OK.

 

[Khanjan]

I am using Insert in JSP code.

statement.executeUpdate("INSERT INTO ADMIN VALUES ('"+lastParam+"','"+databaseinvoer+"','"+phoneParam+"')");

Where datbaseinvoer contains the article.

When i use "" or '' in mine article, it does not works. If i put \ before each ", it does works.

But i dont want to do that each time, How can i do this the easiest way?

 

[TonyGroves]

I'm not familiar with JSP, but when I am assembling an SQL statement in C++, I always convert any string which _could_ contain special characters like quotes or backslashes before adding it to the SQL string. For example:
sql="INSERT mytable VALUES('"+string1+"','"+sqltext(string2)+"')";
where:
string1 definitely does not contain special characters,
string2 could contain special characters,
sqltext is a function which converts a string appropriately.

 

[rab54]

I use perl DBI - so it looks like -

$string = $dbh->quote("O'mally");

then do an INSERT of $string ....


Rab