开发者

Dynamic FULL TEXT CONTAINSTABLE queries advice

问答 作者:

I am currently working on a project where I need to build dynamic CONTAINSTABLE queries. I have code in place that does something like:

public string BuildQuery(string searchTerms)
{
    searchTerms= searchTerms.Replace("'", "''");

    string[] words = searchTerms.Split(new char[] { ' ' }, StringSplitOptions.RemoveEmptyEntries);

    // Here I concatenate all the words into a string separated by AND and pass that to a SQL UDF
}
开发者_Python百科

My question is in regards to cleaning the search terms from characters that can break the SQL query. Currently I am only removing the "'" character since this will break the dynamic query.

Are there any other characters I should think of that can break the query?

Thanks

ASCII Key Combos will definitely break this dynamic query ,like Õ Ž etc

继续阅读:full-text-searchsql-server-2008

更多精彩内容

0

上一篇:

下一篇:

精彩评论

暂无评论...
登录 注册
Qedev.com
验证码 换一张
取 消

最新问答

问答排行榜

法律声明:本站内容均为网友上传,网站举办方负责审核和监督,

如存在版权或非法内容,欢迎举报,我们将尽快予以删除。

Copyright © 2018-2020 开发者. All rights reserved.

Powered by 开发者

ICP备案号: 京ICP备10032868号-9