D
Darrel
I have a lot of fields where people can enter in data. If they enter in
anything with an apostrophe, this messes up the SQL query and errors out.
I know I shouldn't allow quotes and apostrophes anyway for security reasons.
So, as such, what's the recommended method for allowing entry of these
chracters. Should I just make a shared class that simply search and replaces
on input to double-up these characters to escape them and then do the
reverse when grabbing the data back out? Or is there a more accepted method
of accomplishing this?
-Darrel
anything with an apostrophe, this messes up the SQL query and errors out.
I know I shouldn't allow quotes and apostrophes anyway for security reasons.
So, as such, what's the recommended method for allowing entry of these
chracters. Should I just make a shared class that simply search and replaces
on input to double-up these characters to escape them and then do the
reverse when grabbing the data back out? Or is there a more accepted method
of accomplishing this?
-Darrel