D
DartmanX
Can anyone advise me on how to escape quotes on variables passed from a
request variable via JSTL?
Currently, my code looks something like this:
<c:set var="user" value="${param.USER}" />
<c:set var="password" value="${param.PASSWORD}" />
<sql:query ...>
select * from users where user = ? and pass= ?
<sqlaram value="${user}" />
<sqlaram value="${password}" />
</sql:query>
Any help is always appreciated.
Jason
request variable via JSTL?
Currently, my code looks something like this:
<c:set var="user" value="${param.USER}" />
<c:set var="password" value="${param.PASSWORD}" />
<sql:query ...>
select * from users where user = ? and pass= ?
<sqlaram value="${user}" />
<sqlaram value="${password}" />
</sql:query>
Any help is always appreciated.
Jason