MAKE MONEY ONLINE
How to Make Extra Money
Write Articles for Hubpages
Try The Keyword Academy
High Income Investments
Sell ClickBank Products
DEVELOPER TOOLS
ASP Documentation
Tool
.NET Documentation
Tool
PHP Documentation
Tool
SQL Documentation
Tool
MySQL Documentation
Tool
VB6 Documentation
Tool
Indexing Service
Companion
The Website UtilityTECHNICAL
ARTICLES
ASP
ASP.NET
JavaScript
Transact SQL
Other Articles
Software Reviews
PHOTO GALLERIES
Canon EOS 300D
Samples
Akihabara Maids!
More Galleries...
TRAVEL LOG
2008: China
2008: Tokyo
2007: Tokyo
2006: Hong Kong
2005: New York City
NEW STUFF
ASP Spell Check
Code Documentors
The Website Utility
Search Engine Optimisation
Build an ASP Search Engine
My Tropical Fishtank
Software Documentation Tools
Autoglass
UK Letting Agencies
SQL Month Name
SQL Get Date Today
SQL Year Month
Other New Stuff...
MORE STUFF
Domo Kun Store
Make Cardboard Celebs
Cure Your RSI
Cute Asian Girls
Find an Asian Girlfriend
End User Documentation Tools
POPULAR STUFF
Regular
Expressions
ASP Documentation Tool
Index
Server & ASP
JavaScript Ad Rotator
LINKS
Business Website
Software Documentation
Accountancy Services
Business Management
Gothipedia.net
|
Home > Articles > Transact SQL Programming Articles
SQL Server Help: How to use apostrophes in Transact-SQL
Since strings are normally enclosed within single quotes in Transact SQL, it can be a
problem if the string's text contains an apostrophe within it, such as the query below:
SELECT *, FROM Products WHERE ProductName = 'King's Jalepenos'
Obviously this SQL query would fail due to the apostrophe in the ProductName.
Thankfully though, the solution is simple - just put two apostrophes in the string, as
shown below:
SELECT *, FROM Products WHERE ProductName = 'King''s Jalepenos'
Replacing the single quotes with two single quotes should be done wherever a string
that may potentially contain a single quote is used within a query. This can be achived in
most programming languages by using a Replace function. For example, in Visual
Basic.NET the syntax to use would be the following:
Dim ProductName As String = "King's Jalepenos"
Dim SQL As String
SQL = "SELECT *, FROM Products WHERE ProductName = '" & Replace(ProductName,
"'", "''") & "'"
Similarly, in C# the Replace function can be used in an identical way:
Dim ProductName As String = "King's Jalepenos"
Dim SQL As String
SQL = "SELECT *, FROM Products WHERE ProductName = '" & Replace(ProductName,
"'", "''") & "'"
If your strings are being obtained from user input (e.g. from a web form) then don't
forget to remove other characters from strings as well in order to guard against SQL
injection attacks. See the article guarding
web applications against sql injection attacks for more information.
Useful Links
- The SQL Documentation Tool automatically builds
technical documentation for Microsoft SQL Server databases, saving you time and money. A
trial version is available for download.
Useful Development Tools
| SQL
Documentation Tool |
| The SQL Documentation Tool creates technical documentation for Microsoft SQL Server 7.0 and 2000 databases. Technical documentation is created in HTML and HTML Help formats. The HTML Help format documentation is fully searchable and cross referenced. The SQL Documentation Tool documents SQL Server Tables, Views, Stored Procedures, Triggers, Table Relationships and Dependencies. |
 View Sample
Output (HTML Help format).
 View Sample Output (HTML Format).
 Download
Trial Version (10.3Mb ZIP file). |
| ASP
Documentation Tool™ |
| Automatically creates developer documentation for ASP 2.0
and 3.0 web applications written in VBScript and JScript. Documentation for Microsoft
Access, SQL Server 7/2000 databases and Visual Basic 6.0 components associated with the
web application can also be incorporated into the reports. Documentation is created in
HTML, HTML Help and plain text formats. |
View Sample
Output (HTML Help format).
View Sample Output (HTML Format).
Download
Trial Version (5.2Mb ZIP file). |
| .NET Documentation Tool |
| Automatically creates technical documentation for .NET Framework Windows and ASP.NET applications written in C# or VB.NET and SQL Server 7/2000/2005 or Microsoft Access databases associated with the
application. Documentation is created in HTML, HTML Help and plain text formats. |
View Sample
Output (HTML Help format).
View Sample Output (HTML Format).
Download
Trial Version (5Mb ZIP file). |
| Indexing Service Companion |
|
The Indexing Service Companion is a Windows application that extends the functionality of the Microsoft Windows Indexing Service so that it is able to index content from remote websites and also from ODBC databases. As such it can be used as a low cost alternative to Sharepoint Portal Search Services.
|
Try Sample Search Facility.
Download
Trial Version (1.7Mb ZIP file). |
| The Website Utility |
| The Website Utility examines websites for errors and
areas that need to be optimised for search engines by using a built in web crawling engine.
Errors checked for include broken or moved hyperlinks, missing page titles and missing meta tags.
It also generates HTML for use in creating website site maps (table of contents pages - like this one), and is
able to create both client-side JavaScript Search Engines and server-side ASP Search Engines for a website. |
View Sample Output (HTML Format).
Download
Trial Version (3Mb ZIP file). |
|
|
