Using Invalid Characters

[Jay]

I am using MS SQL for my ASP application and have several 'comments' fields.
Obviously in these fields users are going to enter invalid characters and
when they try to submit they will receive an error message. How can I deal
with these invalid characters so the information they are trying to submit
is entered.

On [url]http://www.aspfaq.com/show.asp?id=2399[/url] I found the following list of
invalid characters ",<.>?;:'@#~]}[{=+)(*&^%$£!`¬| -_". Is there a way to
escape each of these characters as they are found before submitting to the
database?

Thank you,

--
"Some see the glass as half-empty;
some see the glass as half-full.
I see the glass as too big." - George Carlin

- J

[Aaron Bertrand [MVP]]

That's my own made up invalid list. The only character that should cause a
problem in a SQL statement is an apostrophe (since it's also used to delimit
the string). See [url]http://www.aspfaq.com/2035[/url]

--
Aaron Bertrand
SQL Server MVP
[url]http://www.aspfaq.com/[/url]




"Jay" <jerry280@yahoo.com> wrote in message
news:%23XNEkqfLEHA.3664@TK2MSFTNGP10.phx.gbl...

>I am using MS SQL for my ASP application and have several 'comments'
>fields.
> Obviously in these fields users are going to enter invalid characters and
> when they try to submit they will receive an error message. How can I deal
> with these invalid characters so the information they are trying to submit
> is entered.
>
> On [url]http://www.aspfaq.com/show.asp?id=2399[/url] I found the following list of
> invalid characters ",<.>?;:'@#~]}[{=+)(*&^%$£!`¬| -_". Is there a way to
> escape each of these characters as they are found before submitting to the
> database?
>
> Thank you,
>
> --
> "Some see the glass as half-empty;
> some see the glass as half-full.
> I see the glass as too big." - George Carlin
>
> - J
>
>

[Jay]

Thanks Aaron.

I used to use MS Access and if I recall correctly we had some issues with
other characters but after testing some of them with the SQL Server it looks
as though it is only the apostrophe that needs to be dealt with. Thank you
for the tip and the great site!

--
"Some see the glass as half-empty;
some see the glass as half-full.
I see the glass as too big." - George Carlin

- J

"Aaron Bertrand [MVP]" <aaron@TRASHaspfaq.com> wrote in message
news:e7uZ0XgLEHA.2576@TK2MSFTNGP12.phx.gbl...

> That's my own made up invalid list. The only character that should cause

a

> problem in a SQL statement is an apostrophe (since it's also used to

delimit

> the string). See [url]http://www.aspfaq.com/2035[/url]
>
> --
> Aaron Bertrand
> SQL Server MVP
> [url]http://www.aspfaq.com/[/url]
>
>
>
>
> "Jay" <jerry280@yahoo.com> wrote in message
> news:%23XNEkqfLEHA.3664@TK2MSFTNGP10.phx.gbl...

> >I am using MS SQL for my ASP application and have several 'comments'
> >fields.
> > Obviously in these fields users are going to enter invalid characters

and

> > when they try to submit they will receive an error message. How can I

deal

> > with these invalid characters so the information they are trying to

submit

> > is entered.
> >
> > On [url]http://www.aspfaq.com/show.asp?id=2399[/url] I found the following list of
> > invalid characters ",<.>?;:'@#~]}[{=+)(*&^%$£!`¬| -_". Is there a way to
> > escape each of these characters as they are found before submitting to

the

> > database?
> >
> > Thank you,
> >
> > --
> > "Some see the glass as half-empty;
> > some see the glass as half-full.
> > I see the glass as too big." - George Carlin
> >
> > - J
> >
> >

>
>