sqlsafetext
Steve Holden
sholden at holdenweb.com
Mon May 7 18:32:19 EDT 2001
"michael montagne" <montagne at boora.com> wrote in message
news:FoEJ6.43651$FS3.483452 at sjc-read.news.verio.net...
> Below is a little function I use to handle such things as "o'brien" in SQL
> strings. It works in VB and I'm trying to port the function to Python.
If
> I type it in interactively, replace returns what I would expect.
> (o''brien), But the function doesn't work. Why?
>
> def sqlsafetext(strText):
> if strText=="":
> return "Null"
> else:
> #print strText
> import string
> #replace single quotes with double single quotes
> string.replace(strText,chr(39),chr(39) + chr(39))
> #replace double quotes with double double quotes
> string.replace(strText,chr(34),chr(34)+ chr(34))
> #wrap in single quotes
> strtemp="'" + strtemp + "'"
> return strText
>
> thanks,
> mjm
>
Surely there's no noeed to escape double quotes?
I always use
def sqlEsc(s):
return string.replace(s, "'", "''")
which has worked fine so far. What am I missing?
regards
Steve
More information about the Python-list
mailing list