2
Hi
Is there any plan to support SQL parameterized queries ?
One could do something like:
1) prepare query: SELECT * FROM table WHERE Id=?
2) loop
a) bind(1, <some Id value>)
b) execute()
c) get next Id value
3) next loop
The major advantage over custom SQL query crafting is the SQL server can optimize the query once and for all. Another advantage is that most SQL layer will take care of parameter formatting i.e. you won't have to escape characters manually, add quotes for strings and not for numbers and all that stuff everyone do before executing the query.
All in all this leads to less code, less errors and better efficiency.
Is there any plan to support SQL parameterized queries ?
One could do something like:
1) prepare query: SELECT * FROM table WHERE Id=?
2) loop
a) bind(1, <some Id value>)
b) execute()
c) get next Id value
3) next loop
The major advantage over custom SQL query crafting is the SQL server can optimize the query once and for all. Another advantage is that most SQL layer will take care of parameter formatting i.e. you won't have to escape characters manually, add quotes for strings and not for numbers and all that stuff everyone do before executing the query.
All in all this leads to less code, less errors and better efficiency.
Login
Search
Recent Posts
Who's Online
Donat-O-Meter
| Stats | |
| Goal: | $100.00 |
| Due Date: | Apr 30 |
| Gross Amount: | $0.00 |
| Net Balance: | $0.00 |
| Left to go: | $100.00 |
 |
|