Expand my Community achievements bar.

Single Quote causing problem in XPATH

Avatar

Level 7
Level 7
‎17-03-2009 05:51 PDT
The workflow was working fine until one of the fields had a single quote in the string and caused the update action to stall.



Using the Execute SQL query module I am updating data in an Oracle table. The query looks like this




UPDATE GSI_FEEDBACK_FORM_HEADERS



SET SITE_STREET = '{$ /process_data/xfaform/object/data/xdp/datasets/data/form1/Details/site_street $}',

SITE_STREET2 = '{$ /process_data/xfaform/object/data/xdp/datasets/data/form1/Details/site_street2 $}'



One of the forms had the street value
"Connah's Quay Deeside". I figured out that the single quote is causing the module to read it as the end of the XPATH, hence causing a "SQL command not ended properly" error.



Any suggestions to oversome this issue.



Aditya

Views

1.5K

Replies

6
Sign in to like this content

Total Likes

Translate
Translate
6 Replies

Avatar

Level 7
Level 7
‎17-03-2009 07:21 PDT
Nope - No luck



Error :




ORA-00904: "1302 n 19th s't": invalid identifier



Aditya

Views

605

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Community user
‎17-03-2009 10:32 PDT
I searched the web and found a forum that discusses how to build a SQl statement with a quote in the query. Most DBs will expect you to escape it with a /. There are other techniques discussed here:



http://it.toolbox.com/wiki/index.php/How_do_I_escape_single_quotes_in_SQL_queries%3F



In either case it looks like you wll have to search you input string for such chars beforehand.

Views

605

Replies

0

Total Likes

Translate
Translate

Avatar

Level 9
Level 9
‎21-03-2009 23:58 PDT
Hi

Just use a parameterized query, this solves the problem.

Something like:

UPDATE GSI_FEEDBACK_FORM_HEADERS

SET SITE_STREET = ?,

SITE_STREET2 = ?



Then put the xpath expressions into the table below as parameters 1 and 2.

Howard

http://www.avoka.com

Views

605

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 7
Level 7
‎23-03-2009 05:15 PDT
Howard - Thank you so much for the awesome suggestion. It worked perfectly !!



You have saved me a lot of work.



Aditya

Views

605

Replies

1
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 9
Level 9
‎07-04-2009 05:02 PDT
In response to Aditya_S_

No problem

It also:

  • Makes your SQL look much neater.
  • You can type in "test" values for the parameters, so that you can test your SQL statement and see the results.

Howard

http://www.avoka.com

Views

605

Replies

0
Sign in to like this content

Total Likes

Translate
Translate