From: loufoque (mathias.gaunard_at_[hidden])
Date: 2006-09-12 14:31:26

• Next message: chun ping wang: "[Boost-users] boost filesystem using dev-cpp."
• Previous message: Ovanes Markarian: "Re: [Boost-users] Library Interface Design"
• In reply to: Paul Davis: "Re: [Boost-users] Library Interface Design"
• Next in thread: Edward Diener: "Re: [Boost-users] Library Interface Design"

Paul Davis wrote :

>
> id = "2 ; delete from persons ;"
>
> sql << "select first_name, last_name, date_of_birth "
> "from persons where id = " << id
>
>
> Someone just deleted your persons table. Oops.

In my example sql was supposed to be a special stream type overloaded to
escape types correctly. I thought SOCI worked that way, but in fact it
seems it is not the case.

You could do this, though

std::string name;
sql << "select phone from phonebook where name = :name",
     use(name);

• Next message: chun ping wang: "[Boost-users] boost filesystem using dev-cpp."
• Previous message: Ovanes Markarian: "Re: [Boost-users] Library Interface Design"
• In reply to: Paul Davis: "Re: [Boost-users] Library Interface Design"
• Next in thread: Edward Diener: "Re: [Boost-users] Library Interface Design"