tags:

views:

661

answers:

4
+3  Q: 

How to check for valid oracle table name using sql/plsql

I need to check if a string contains a valid Oracle table name using sql/plsql. The criteria I found for a Oracle table name are these:

  1. The table name must begin with a letter.
  2. The table name can not be longer than 30 characters.
  3. The table name must be made up of alphanumeric characters or the following special characters: $, _, and #.
  4. The table name can not be a reserved word.

Criteria 1,2,3 don't seem so hard to tackle. But what about point 4? What are my options without trying to actually create a table with the given name and then see if it succeeds or fails.

A: 

I have a SQL_RESERVED_WORDS table that I check against.

EDIT:

(I lied... it was just a SYNONYMN for the table in carpenteri's post)

cagcowboy  2009-08-21 13:40:08
+4  A: 

For SQL reserved words you can check v$reserved_words. Here the link from the documentation

carpenteri  2009-08-21 13:41:31
Sucks that in Oracle 9i this view contains only KEYWORD and LENGTH.
jva  2009-08-21 14:00:37
A: 

It is a fairly large list to check. Can you simply add a default prefix to the tables and avoid these problems all together? user_xxx

Gren  2009-08-21 13:42:25
+5  A: 

Oracle has a built-in that's useful for checking whether a SQL Name is valid. That's especially useful when building dynamic queries where you need to prevent SQL Injection.

Check out the dbms_assert.simple_sql_name built-in, and see the Oracle white paper at How to Write Injection Proof PL/SQL for more details.

v$reserved_words is also useful, as others have noted.

Jim Hudson  2009-08-21 14:15:51
+1 For suggesting to use a builtin. Note that dbms_assert is only available in Oracle11.
Rob van Wijk  2009-08-21 14:51:53
Hi Rob, apparently the package was backported to all versions of Oracle (down to 8.1.7.4) in a patch in 2005 (to deal with SQL injection threats). It is definetely available on a new 10gR2 instance while at the same time absent from the 10gr2 doc. Cheers.
Vincent Malgrat  2009-08-21 15:21:50

related questions

Is there a Way to use Linq to Oracle
NHibernate and Oracle connect through Windows Authenication
Boolean Field in Oracle
How do you manage schema upgrades to a production database?
How do I deal with quotes ' in SQL
When do you use table clusters?
Oracle write to file
MS SQL Server 2008 "linked server" to Oracle : schema not showing
Develop on local Oracle instance
Resources for an Oracle beginner
What strategies have you employed to improve web application performance?
Automate Syncing Oracle Tables With MySQL Tables
Best way to encapsulate complex Oracle PL/SQL cursor logic as a view?
What Content Management does your workplace use?
What is the difference between oracle's 'yy' and 'rr' date mask?
SQL/Query tools?
How to make Pro*C cope with #warning directives?
Oracle SQL Developer not responsive when trying to view tables (or suggest an Oracle Mac client)
How big would such a database be?
Oracle - What TNS Names file am I using?
What is a good way to open large files across a WAN?
How do I find the high water mark (for sessions) on Oracle 9i
SQL Case Statement Syntax?
cx_Oracle - what is the best way to iterate over a result set?
cx_Oracle - How do I access Oracle from Python?