Re^7: DBI parameterized database query with comma seperated list


Keep It Simple, Stupid
	PerlMonks

Re^7: DBI parameterized database query with comma seperated list

by Pope-O-Matik (Pilgrim)

on Dec 22, 2015 at 04:44 UTC ( [id://1150928]=note: print w/replies, xml )

Need Help??

in reply to Re^6: DBI parameterized database query with comma seperated list
in thread DBI parameterized database query with comma seperated list

Please review the possible outputs listed

Actually, on second look, that's not bad. You're generating placeholders and then passing the values. For an IN() list (as opposed to one that dynamically specifies columns) that ought to work from a security standpoint.

That being said, the second issue is query caching, which cannot be done when the statement changes at all. In that case, letting the RDBMS do it, may have a (light) performance benefit if the query is executed more than once.

Comment on Re^7: DBI parameterized database query with comma seperated list

In Section Seekers of Perl Wisdom

Domain Nodelet^?

www.com | www.net | www.org

Node Status^?

node history
Node Type: note [id://1150928]
help

Chatterbox^?

How do I use this? • Last hour • Other CB clients

Other Users^?

Others imbibing at the Monastery: (7)

As of 2024-04-24 10:45 GMT

Sections^?

Information^?

Find Nodes^?

Leftovers^?

Today I Learned

Voting Booth^?

No recent polls found