escaping a string

Hot Topic

selecting multiple parameters
ordinal position
Sharing time intelligence across cubes
How to set a ReportParameter to the value NULL?
SQL Server 2005 Express
Reports containing Drill Through Interactive bar charts not working properly when deployed
CREATE CERTIFICATE from backup: error message
Relationships problem in Sql Server 2000
To add one report or many
TRANSACTION

SQL Server

Concatenating column values for each uniqueid
Table Variables in Stored Procedure
Join query
Cannot connect to MSSAS 2005 Standard on local machine
Displaying a word document via Reporting Services?
Help! AcquireConnection method call to the connection manager failed with error code 0xC0202009
Can we integrate Chinese fonts into SQl Server English OS ???
Notification Services and Full text search
A lock could not be acquired after 16 attempts and timed out
Create Extended Procedures in VS 2005

escaping a string

hi guys

please help me. i've never user stored procs before but here is my problem.

this is only what i am allowed to display but it shows my problem

declare @suite varchar(10),@company varchar(1)
set @suite = 'brutus'

set @company = 'A'
exec ('insert into tot (SuiteName,Company) values ('+@suite+','+@company+')')

when i exec the query it says that "brutus" is an invalid column name. i know that i need to insert a extra ' but i don't know how or what is the escape character. please help me.



Answer this question

escaping a string

  • BruceS

    No, therefore you would need dynamic SQL, that will not function with the second opion I posted.

    HTH, Jens Suessmeyer.

    ---
    http://www.sqlserver2005.de
    ---

  • Gener

    Hi,

    this should be accomplishedby this one here:

    exec ('insert into tot (SuiteName,Company) values ('''+@suite+''','''+@company+''')')

    But I would rather prefer not using dynamic sql in this case:

    insert into tot (SuiteName,Company) values (@suite,@company)

    HTH, Jens Suessmeyer.

    ---
    http://www.sqlserver2005.de
    ---

  • Bastian

    thanks that helps but when i do this

    1. exec ('alter table tot add '+@UnitT+' varchar(3) DEFAULT '' WITH VALUES')

    2. alter table tot add @UnitT varchar(3) DEFAULT ' ' WITH VALUES

    not one work. in 1 i get the same problem and in 2 it tells met there is a problem with syntax before @unit

  • topdoubledigit

    OK THANKS

    i used your first solution with the ''' multiple quotes and it works perfect. thanks
  • escaping a string
Answer this question