Аноним
Reputation: 13
Variable within a variable in a CGI script
There is such a script:
NAME = `echo "$QUERY_STRING" | sed -n 's/^.*post=\([^&]*\).*$/\1/p' | sed "s/%20/ /g"`
RES = `psql -U user -d db -t -c "SELECT tabl FROM tablica WHERE name = '$NAME'"`
echo $RES
Everything works fine (it means GET requests are fine). But the data from the database do not go.
The problem is that the value of the parameter in the query WHERE NAME is not being set, and I get a syntax error.
I have read many articles on the Internet, but found nothing about a variable inside backticks.
How can I fix this?
Upvotes: 1
Views: 51
Answers (1)
Mat
Reputation: 206689
You're not allowed to put spaces around the equal sign in variable assignments. And you should generally not use backticks, but prefer the $() form, it is easier to deal with quoting with it.
NAME=$(echo "$QUERY_STRING" | sed -n 's/^.*post=\([^&]*\).*$/\1/p' | sed "s/%20/ /g")
RES=$(psql -U user -d db -t -c "SELECT tabl FROM tablica WHERE name = '$NAME'")
echo "$RES"
Note that what you're doing is pretty insecure, you need stronger validation for your inputs.
Upvotes: 2
Related Questions
- store postgresql result in bash variable
- Passing variables to psql script
- How can I pass variables from one CGI script to another?
- pass variable from PHP to Ubuntu shell script
- Bash passing information from script to script
- Using shell script store PostgreSQL query on a variable
- How to create a variable in a bash script that contains the data from a postgres database
- How to use cgi form input as variable in call to system command in Python script?
- Shell script - use variable in loop
- How to get variable in CGI made by /bin/sh + Apache