Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

HTML Local Storage parameter replacement escaping

Tags:

html

sql

sqlite

I'm experimenting with a simple HTML5 local storage based app and I'm having trouble with the parameter replacement escaping (maybe) in my code.

The SQL line I want to execute is:

SELECT name, title FROM testTable WHERE name LIKE '%test%';

so my Javascript line is something like:

tx.executeSql( "SELECT name, title FROM testTable WHERE name LIKE '%?%'", [ search_string ],

This fails (I think) because the ? is being treated as a literal and so the parser complains about too many parameters (search_string).

I optimistically tried using ??? and ["'%", search_string, "%'"] but same result.

Any suggestions - I imagine it's something really obvious so please be gentle.

like image 819
speedwell Avatar asked Mar 20 '26 22:03

speedwell

1 Answers

How about:

tx.executeSql( 
    "SELECT name, title FROM testTable WHERE name LIKE ?", 
    [ '%'+search_string+'%' ]
    );
like image 100
Ned Batchelder Avatar answered Mar 22 '26 12:03

Ned Batchelder
Sign in to Comment

Related questions

How do I turn a Start Date column, an End Date column and a column with a Name into running dates and a column with that name for all dates in between
Get current year first month and first day in SQL
Why is SQL truncating my data?
The NOT IN with NULL values dilemma in ORACLE SQL

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!