gopal
Reputation: 63
jdbc / PreparedStatement escape sequence
I'm trying to implement jdbc escape sequence while calling a SQL via PreparedStatement in Java.
Below is my sample code.
String sql ="select 1 from dual where 'abcd' = ? {escape '|'}";
ps = con.prepareStatement(sql);
ps.setString(1,"abcd");
ps.executeQuery();
While executing the class I'm getting the below error.
java.sql.SQLSyntaxErrorException: ORA-00933: SQL command not properly ended
at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:445)
at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:396)
at oracle.jdbc.driver.T4C8Oall.processError(T4C8Oall.java:879)
at oracle.jdbc.driver.T4CTTIfun.receive(T4CTTIfun.java:450)
at oracle.jdbc.driver.T4CTTIfun.doRPC(T4CTTIfun.java:192)
at oracle.jdbc.driver.T4C8Oall.doOALL(T4C8Oall.java:531)
at oracle.jdbc.driver.T4CPreparedStatement.doOall8(T4CPreparedStatement.java:207)
at oracle.jdbc.driver.T4CPreparedStatement.executeForDescribe(T4CPreparedStatement.java:884)
at oracle.jdbc.driver.OracleStatement.executeMaybeDescribe(OracleStatement.java:1167)
at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:1289)
at oracle.jdbc.driver.OraclePreparedStatement.executeInternal(OraclePreparedStatement.java:3584)
at oracle.jdbc.driver.OraclePreparedStatement.executeQuery(OraclePreparedStatement.java:3628)
at oracle.jdbc.driver.OraclePreparedStatementWrapper.executeQuery(OraclePreparedStatementWrapper.java:1493)
at org.apache.commons.dbcp.DelegatingPreparedStatement.executeQuery(DelegatingPreparedStatement.java:96)
at org.apache.commons.dbcp.DelegatingPreparedStatement.executeQuery(DelegatingPreparedStatement.java:96)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:606)
at org.jdbcdslog.PreparedStatementLoggingHandler.invoke(PreparedStatementLoggingHandler.java:35)
Can anyone please help?
Upvotes: 0
Views: 475
Answers (1)
Luke Woodward
Reputation: 64949
The escape sequence you mention is only valid with LIKE clauses.
Try the following instead:
String sql = "select 1 from dual where 'abcd' like ? {escape '|'}";
Upvotes: 1
Related Questions
- Escape MySQL strings in Java... without prepared statements
- How to handle single quotes in PreparedStatement?
- Java PreparedStatement using two single quotes for empty string parameter
- Escaping two single quotes in JDBC PreparedStatement parameter
- Java JDBC Prepared Statement not inserting single quotes (SQL Escaping)
- prepared statement and SQL injection
- JDBC driver escaping arguments for prepared statement?
- What characters will PreparedStatement escape?
- How do you properly escape strings without PreparedStatement?
- Prepared Statements and JDBC Drivers