开发者

Can't figure out the syntax for this AR query

开发者 https://www.devze.com 2023-03-18 01:59 出处：网络

I\'m trying to开发者_如何学运维 run this query: Result.where(\'link = #{site}\').present? where site is a string. However the problem with the code above is that because of the single quotes, site

相关专题：ruby ruby-on-rails ruby-on-rails-3 syntax

I'm trying to开发者_如何学运维 run this query:

Result.where('link = #{site}').present?

where site is a string. However the problem with the code above is that because of the single quotes, site will not be interpolated.

If i try

Result.where("link = #{site}").present?

I get a syntax error.

How can I write this?

You will be hacked next day you use it. It has severe SQL injection issue.

What you have to do is this:

Result.where(:link => site)

Or if you need something other than equality then this syntax is better:

    Result.where('link <> ?', site)

You can read more here.

If my memory serves I think you can double up the quotes:

Result.where('"link = #{site}"').present?

上一篇:新生儿足跟血复查，？

Cake Session Terminating too quickly:下一篇

精彩评论

暂无评论...

登录注册

请自觉遵守互联网相关的政策法规，严禁发布色情、暴力、反动的言论！

验证码：

换一张

取消

关注公众号

图文推荐

Delphi - Custom drawing a message list

C++ header-only include pattern

IE7 Margin Collapses Into Padding

in CoffeeScript, how can I use a variable as a key in a hash?

Interactive visualization of a graph in python [closed]

How to customise PHP MYSQL tables?

High quality, simple random password generator

Image Recognition ApI in android

开发者开发者网给大家分享系统运维,大数据运维,云计算,编程开发技巧,路由交换,运维和开发相关的资讯及技术文章，同时StackOverflow中文社区，知识经验交流分享。

法律声明：本站内容均为网友上传，网站举办方负责审核和监督，如存在版权或非法内容，欢迎举报，我们将尽快予以删除。邮箱：devze@qq.com

Can't figure out the syntax for this AR query

更多 问答 相关资讯：

精彩评论

关注公众号

热门标签

图文推荐

更多问答相关资讯：