When chucking data in cookie you cannot use certain characters in this example ‘ : ‘ . To get around this you use escape and unescape. Trying to use the escape as such:
I working on a ASP project (usually I'm a PHP guy) and I wanted to encode a string to make it safe for a SQL insert. Is there a function built into ASP for that or do I just need to replace single quotes?
I'm having a problem finding/using an escape character with this ASP/JScript application I'm creating. Basically I have text sometimes that has apostrophes or double quotations in them, but they won't be INSERTED unless I manually take them out.
Ex: INSERT INTO tbl1 (vendor,reason) VALUES (81,"This is only a test, but there is an apostrophe and it's only going to make things worse.")
That apostrophe in "it's" is kiling everything. I've used the replace method to change it to " ' ", but that STILL doesn't work. I can't find MS SQL's ESCAPE CHARACTER. I've tried several directions of the backslash, but no luck.
I am trying to only have a link show if there is a certin value in the DB. This is what I am trying:
<% if (rsWelcome.Fields.Item("access_level").Value) = "admin" then
response.Write("| - <a href="sps_main.asp">Sales Training Support </a>-")
end if %>
BUT... this is the error I get:
Expected ')'
/sta/topnav_test.asp, line 9 response.Write("| - <a href="sps_main.asp">Sales Training Support </a>-") How do I use quotes in a "response" and have the app server ignore them??
I've a problem reading querystring parameters that are 'uri encoded'. Anyone has a solution for this? To reproduce the problem, create a classic ASP containing the following code:
-----------------------
<p>Value sent via querystring: <%= Server.HTMLEncode(Request.QueryString("value")) %></p> <input id="input" /> <button id="submit" onclick="window.location.assign('Test.asp?value=' + encodeURIComponent(input.value));">submit</button>
I'm still having trouble getting some of my data being returned properly when people use quotes. (ex ProjectName contents being - the "primary" project - The double quotes are the main issue. I am using a function for the single quote and it seems to have resolved the issue.
Code:
Term = trim (Term) if Term <> "" then Term = Replace (Term, chr (39), chr (39) & chr (39)) end if If Term <> "" then
I use this just when passing strings from a form. I tried altering it and using chr (34) for a double quote but it didn't work.
I've been looking for it for a while. I found it a week back by accident, but didn't need to use it then. It's a function that escapes SQL strings so that if there is a ' in the string it will escape it for you. I can remeber the name of it.
Info DB: Oracle(9i), where I generate query strings programatically and send them to the DB server.
I have rtfm'd and googled this extensively, but I have not found how to properly esacape the ampersand character in an oracle query (I'm NOT using the SQL+ command line interface).
Oracle uses the & character to denote a variable substitution, and unfortunately one of the fields I must query has data that contains the & character. I need to know how to escape the & character in my query strings so that Oracle will treat it as a string literal. Code:
I have a 'memo' form field being entered into an access database.If people put in characters other then text (Quotes, operators, etc) then I get an insert error: ---- User Input: oh let's see - a va
Error: [Microsoft][ODBC Microsoft Access Driver] Syntax error (missing operator) in query expression ''oh let's see - a va', 'No additional comments submitted')'. ----
Is there a way to get this into the database? In php, I would simply use the function 'addslashes()' (escaping the string) - is there a similar function in ASP or am I doing something else wrong?
I am inserting records into an Access table using the OleDbCommand class. The insert values come from a basic web form with text boxes. If the values contain ' or " it creates a problem. What is the proper way to escape these characters? Surely there's a built-in function for it somewhere.
Anyone in here got an idea how i could limit the display on on a paragraph to 50 characters? because everytime I access the database it would show up the entire paragraph.
I have the character & (username is a&d) in a username in one of my database fields and it won't read it properly. Do you have to do something special with characters like that?
sqlString = "SELECT * FROM Users WHERE UserID=" & "'" & userid & "'"
I have a MS SQL 7.0 table with a large field (> 500 characters). My select statement embedded in my ASP file in an intranet web interface only returns 255 characters. If I run the select statement in Query Analyzer, I can easily change the "Maximum Characters per Column" setting to return the entire field, but that doesn't help me in my ASP web interface. How do I return the entire field through ASP?
What I am trying to do could be simple but I have no idea how to it. I am trying to display only a part of the record retrieved from database. I have retrieve data from database and I show it in normal way <% = oRs(0)%>, the problem is that I want to show only 100 first characters and then make some thing like this … after 100 first character. In this way all the data retrieved would look the same in the page.
One of our offices in AD is called "Albert St", the OU is called "Albert St", but when I retrieve the value out of the list box it becomes "Albert" and throws errors as it cant find the "Albert" OU. Not surprising, really. I am going to try type casting, but beyond that
I have a wee lil problem when I am inserting data into my db from my asp page. The problem is that it is inserting unwanted characters with the values. I have used the following to try and remove the unwanted characters but to no avail: Code:
I have a variable I'm pulling from a database that's a phone number in XXX-XXX-XXXX format. What I'm looking for is a way to strip out all non-numeric characters from the variable (XXXXXXXXXX). I don't want it to look only for "-", since sometimes, there are also alpha characters entered as well.
Im doing a update page and noticed this error, whenever you want to write for example "can't, i've" it errors on submit, but characters like "." are okay. Why doesn't it like these characters and how can i make it like them? I need some extra code?
I have a SQL statement to retreive results based on keywords entered I only want to show the first 200 characters of the field though, how would I modify this code to do just that?
I am currently building a website and in one of the pages, it is to return Immediate, Extended, Standdown instead of 1.Immediate, 2.Extended, 3.Standdown(in the Ms Access). I am wondering if there is any quote to help me not display the first 2 characters(eg 1.) but just the 3rd character onwards. # I need the numbering there for future usage thus i cannot remove it from the Access database
I have created a form in which people insert there fax number, at the moment it returns an error if a space is inserted in the fax number ie: 0234 76893. How do I correct this?
The website that I am developing is having a search option. The search is according to the type of Industries, like IT-Software, IT-Hardware etc. I am using procedure to search through the database. Now whenever I Select an Industry name like IT - Software, FMCG/Foods/Beverages(i.e with special characters) etc. i get an error message Code: Line 1: Incorrect syntax near '/'. here is the code where I am getting the error
this is same for every keyword having special characters like / , - and even space But when I use keywords without any special character its works fine.
I'm pulling product descriptions from the database and would like to limit the number of charcters that is displayed. Also, I'd like to add ... at the end.
Something like: This long text is boring blah blah blah
I have a database with names, lastnames which has special characters to be seen (10-15 of them), for example: "{" has to be "š". I emphasize - those characters are not to be replaced in the database, but just to be replaced when go to the screen.Is the only way to do that function replace in the user function that has to be made? I have to say that I have to make the similar function for data entry - input also, which has to replace those characters before - for example search.