Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations IamaSherpa on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Single quote problems 3

Status
Not open for further replies.
savok

savok

Technical User
Jan 11, 2001
303
AT
What can I do about single quotes? Is there a way for me to prevent the user from entering single quotes in the text box? or a way to change my sql codes so that it doesnt give an error if there is a single quote in the text field?

the following would give an error and i am looking for ways to avoid it. Any advice?

txt = "TE'ST"
sql = "update table set field = '" & txt & "'"

Thanks
 
Sort by date Sort by votes
Can you use the Replace function to find all the single quotes it from the text string and replace it with "" before you stick it in the SQL statement? You need VB6 for replace though.

Or do you need to stop this occuring in the first place?
 
Upvote 0 Downvote
yeah i guess i can strip all the single quotes before putting them into the database but that would take too long to do :) there has to be a better way
 
Upvote 0 Downvote
Try placing conditional statement in the KeyPress event of the text box. If the keyascii value is equal to 39, set it equal to 0. This will throw away the keystroke, thus preventing the user from typing it in.

Inside KeyPress event:

Select case keyascii
Case 39
keyascii = 0
case else
End select


 
Upvote 0 Downvote
You could try cancelling the keystroke in the keypress event of the textbox so that if ascii=39 then keyascii=0 will do this or in sql (depending on language) in t-sql you could piece it together like and incorporating the function char(39) to take the place of the literal string.
 
Upvote 0 Downvote
"update table set field = '" & Replace(txt, "'", "''") & "'" Eric De Decker
vbg.be@vbgroup.nl

License And Copy Protection AxtiveX.

Download Demo version on my Site:
 
Upvote 0 Downvote
Hey people! Undocumented SQL:
Use the # sign before and after the string. Also, routines that replace ' with '' note: SQL only recognizes the FIRST '' in the string - in "Joe's Mother's House" replaced with "Joe''s Mother''s House" , it'll blow up right after mother - that's why the # format is so nice, all the ' you want & no problem - HOWEVER!!!!!!!!!!!!!!! If the string ITSELF has a # in it your SOL!

strSQL = "Update MyTable (Comment) Values (#Joe's Mother's House#)"
 
Upvote 0 Downvote
to timlarkin

if in the database is "t'krantje" as saved ,ho do you seek of Find.First with # ???

# is for seek a date value and not quotes...
Eric De Decker
vbg.be@vbgroup.nl

License And Copy Protection AxtiveX.

Download Demo version on my Site:
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

sal21
  • Locked
  • Question
COLORIZE BACKGROUND of single cell in listview
Replies
1
Views
68
strongm
strongm
sal21
  • Locked
  • Question
SSTAB colorize font on single label tab 2
Replies
10
Views
269
sal21
sal21
sal21
  • Locked
  • Question
based on https://www.tek-tips.com/viewthread.cfm?qid=1803482, possible to border single item
Replies
6
Views
163
strongm
strongm
Swi
  • Locked
  • Question
Specify delimiter and quote on SQL Export Statement 1
Replies
5
Views
136
Swi
Swi
gmmastros
  • Locked
  • Question
Internationalization problems
Replies
12
Views
178
strongm
strongm

Part and Inventory Search

Sponsor

Back
Top