- From: Křištof Želechovski <giecrilj@stegny.2a.pl>
- Date: Sun, 7 Oct 2007 13:57:27 +0200
Maybe I am wrong but I have a feeling that the need to quote anything programmatically means that the underlying programming language has a severe flaw. Quoting is a primitive method of marshalling requests for persistence and transport; such needs are best handled behind the scenes. If I have to quote by hand, I am sure I am going to fail to do it right sooner or later. Best regards Chris -----Original Message----- From: whatwg-bounces@lists.whatwg.org [mailto:whatwg-bounces at lists.whatwg.org] On Behalf Of Scott Hess Sent: Saturday, October 06, 2007 2:03 AM To: WHATWG Subject: [whatwg] Couple comments on Database storage spec. It may be worthwhile for Database to export a quote(arg) function, which will quote the argument in the appropriate manner for use in constructing a statement. This is useful for cases where it is challenging to reduce something to a static SQL statement with bind parameters. [A common case for this is something like "SELECT rowid FROM t WHERE c IN (...)", and you want to replace ... with an appropriately quoted comma-separated array.]
Received on Sunday, 7 October 2007 04:57:27 UTC