Single quotes woe while using the new CF9 CFScript Query syntax and bound parameters

Question

Hi all,don't know if anybody else has run into this, but this morning I just spent around two hours troubleshooting a very simple query.I'm running the CF9 Server Developer Edition, and using the new CFScript component syntax. My function is something like this, irrelevant code omitted: public query function getCountryOfficiers() { var officiers = new query(); officiers.addParam(name="cc", value=this.countryCode, cfsqltype="varchar"); officiers.setSQL( " select P.FirstName + ' ' +P.LastName as Name, ... P.EMailAddress as EMail from ... where CountryCode = :cc "); return officiers.execute().getResult(); }While testing this function, the server keeps giving me error of this kind:The web site you are accessing has experienced an unexpected error. Please contact the website administrator. The following information is meant for the website developer for debugging purposes. Error Occurred While Processing Request Error Executing Database Query. Incorrect syntax near ':'. The error occurred in D:\ColdFusion9\CustomTags\com\adobe\coldfusion\base.cfc: line 364 Called from D:\ColdFusion9\CustomTags\com\adobe\coldfusion\query.cfc: line 614 Called from D:\ColdFusion9\wwwroot\ExtranetNG\Country\CountryDAO.cfc: line 71 Called from D:\ColdFusion9\wwwroot\ExtranetNG\CFCTestPage.cfm: line 5 Called from D:\ColdFusion9\CustomTags\com\adobe\coldfusion\base.cfc: line 364 Called from D:\ColdFusion9\CustomTags\com\adobe\coldfusion\query.cfc: line 614 Called from D:\ColdFusion9\wwwroot\ExtranetNG\Country\CountryDAO.cfc: line 71 Called from D:\ColdFusion9\wwwroot\ExtranetNG\CFCTestPage.cfm: line 5 362 : #getPreserveSingleQuotes(sqlArray[1])#363 : 364 : 365 : 366 : It really took me a long time including debugging into the query.cfc and base.cfc components provided by Adobe to figure it out - it seems if there are an odd number of single-quoted strings in the SQL statement, then the bound parameter parsing doesn't work correctly and the statement stored in sqlArray gets screwed up.To illustrate the point, the parser would happily process the following (TWO single-quoted strings in total): officiers.setSQL( " select P.FirstName + '1st' +P.LastName as Name, ... P.EMailAddress+'2nd ' as EMail from ... where CountryCode = :cc ");But not this (THREE single-quoted strings in total): officiers.setSQL( " select P.FirstName + ' ' +P.LastName+' 2nd' as Name, ... P.EMailAddress+'3rd' as EMail from ... where CountryCode = :cc ");I must say I was dumbfound when I discovered this, really don't have much time to do more testing now, so I just wrote a note to our developers to keep an eye on that, but hopefully we can get a fix for this soon?I'm actually quite enjoying using the new syntax - makes logic much easier to read. But this kind of things really makes you think twice...regards,Billy

Adam Cameron. · Answer

Bleah.Have you raised a bug for this?http://cfbugs.adobe.com/cfbugreport/flexbugui/cfbugtracker/main.html-- Adam

Error Executing Database Query.

Sign up

To post, reply, or follow discussions, please sign in with your Adobe ID.

Sign in to Adobe Community

To post, reply, or follow discussions, please sign in with your Adobe ID.

Scanning file for viruses.

This file cannot be downloaded