nabroyan
Reputation: 3275
MEMSql user defined variable
I have found that MEMSql does not support user defined variables (source).
Is there any workaround of this? Is it going to be in future releases?
I want to do SQL injection protection via user defined variables. Is there any other good way of doing this?
Upvotes: 3
Views: 1064
Answers (1)
Jack Chen
Reputation: 1214
In the future 6.0 release, you can define stored procedures etc and use variables within those - see the documentation. A beta is available now here.
As for SQL injection protection, most client drivers support running queries with parameters in a way that is not vulnerable to SQL injection. Usually there is a function like query("select * from t where a = ?", 5) which places your params in the query in a safe way.
Upvotes: 2
Related Questions
- Variable in sql file with single quote
- MemSQL select query 1705 error
- Single quotes in variable in T-SQL
- How to get the user name in sql when a query is run against a Reference table in MemSQL?
- Dynamic SQL in MemSQL
- Single quotes in a variable
- MS SQL equivalent to MySQL user defined variables in queries
- User-defined variable in an INSERT query for MySQL
- User-defined variable in a query
- Using a variable with pure SQL