scala - Is it possible to use IN clause in plain sql Slick for integers? -


there similar question here doesn't answer question.

is possible use in clause in plain sql slick?

note part of larger , more complex query, need use plain sql instead of slick's lifted embedding. following good:

val ids = list(2,4,9) sql"select * coffee id in ($ids)"

the sql prefix unlocks stringcontext can set sql parameters. there no sql parameter list, can end opening sql injection here if you're not careful. there (and dangerous) suggestions dealing problem sqlserver on this question. have few options:

your best bet use #$ operator mkstring interpolate dynamic sql:

val sql = sql"""select * coffee id in (#${ids.mkstring(",")})"""

this doesn't use parameters , therefore might open sql-injection , other problems.

another option use regular string interpolation , mkstring build statement:

val query = s"""select * coffee id in (${ids.mkstring(",")})""" staticquery.queryna[coffee](query)

this same approach using #$, might more flexible in general case.

if sql-injection vulnerability major concern (e.g. if elements of ids user provided), can build query parameter each element of ids. you'll need provide custom setparameter instance slick can turn list parameters:

implicit val setstringlistparameter = new setparameter[list[string]]{     def apply(v1: list[string], v2: positionedparameters): unit = {         v1.foreach(v2.setstring)     } }  val idsinclause = list.fill(ids.length)("?").mkstring("(", ",", ")") val query = s"""select * coffee id in ($idsinclause)""" q.query[list[string], string](query).apply(ids).list(s)

since ids ints, less of concern, if prefer method, need change setstringlistparameter use int instead of string:


-

Comments

Post a Comment

Popular posts from this blog

java - SSE Emitter : Manage timeouts and complete() -

i writing web app multiple listeners(evcentsource sse clients js) connected server . want store sse emitter per connected listener : can done in memory or other means assigning id each client able achieve far now question ; how send response/event specific client connected web app ? while doing sseemmiters stored either getting completed or timed out. how prevent ? how keep sseemmiter available open infinite time (till client closes) , send events selectively .
Read more

jquery - uncaught exception: DataTables Editor - remote hosting of code not allowed -

i'm trying implement crud operation using datatableseditor using datatables.but i'm getting error messages: 1)uncaught exception: datatables editor - remote hosting of code not allowed. please see http://editor.datatables.net details on how purchase editor license 2)typeerror: a.editor undefined 3) $.fn.datatable.editor not constructor" what reason? here configuration: <%@ page language="java" contenttype="text/html; charset=iso-8859-1" pageencoding="iso-8859-1"%> <!doctype html public "-//w3c//dtd html 4.01 transitional//en" "http://www.w3.org/tr/html4/loose.dtd"> <html> <head> <meta http-equiv="content-type" content="text/html; charset=iso-8859-1"> <title>insert title here</title> <link rel="stylesheet" type="text/css" href="//cdn.datatables.net/1.10.12/css/jquery.datatables.min.css"> <link re...
Read more

java - How to resolve error - package com.squareup.okhttp3 doesn't exist? -

i trying convert json java object use of gson in maven, following youtube video guidance - https://www.youtube.com/watch?v=vqgghm9pwe0 , theres error occurs when in main class error - package com.squareup.okhttp3 doesn't exist. code below: java package com.codebeasty.json; import com.squareup.okhttp3.okhttpclient; public class main { private static okhttpclient client = new okhttpclient(); public static void main (string [] args) { } } i put in dependency in pom.xml: <dependencies> <dependency> <groupid>com.squareup.okhttp3</groupid> <artifactid>okhttp</artifactid> <version>3.4.2</version> </dependency> <dependency> <groupid>com.google.code.gson</groupid> <artifactid>gson</artifactid> <version>2.8.0</version> </dependency> </dependencies> i dont understand why doesn't recognize com.squareup. there may need download? have downl...
Read more