Is there a SQL library handling simple sql related tasks for ASP classic? What I have in mind is sql to array, multiple insert, input sanitizing etc.
Thanks
A:
I'm very much NOT an asp guy.... but the ADODB recordset object is what we use at work. "input sanitizing" is like alchemy.... you can never quite get all the way there. Always use parametrized queries/stored procedures.
Some quick little example snippets are here...
Jody
2009-06-08 23:36:15
Thank you for answering; still, I am looking for a library that would minimize redundancy and provide input sanitizing. Cheers --Andre
aaandre
2009-06-09 17:57:05
Using parametrized queries will sanitize your input by limiting the length of chars submitted to those held in the SP or db table, as well as the data type. Also, the need for sanitizing for things like apostrophe's ('), comment marks (--) and other stuff you never thought of is unnecessary. The program will not interpret ANY data passed in by the user as syntax. It will only use it as part of the intended parameter.
Jody
2009-06-16 18:28:57
Jody
2009-06-16 18:32:25