堆栈内存溢出
  简体   繁体   English

JDBC插入查询错误

[英]JDBC Insert Query Error

 原文  2013-07-07 22:17:48       java/ sql/ jdbc

问题描述

I'm new to Java and JDBC.. Currently I'm working on a school project for a Java course. 我是Java和JDBC的新手。目前,我正在为Java课程从事学校项目。 I'm trying to pass some java variables to an Insert SQL query using JDBC, but I'm getting the follow exception: 我正在尝试使用JDBC将一些Java变量传递给Insert SQL查询,但出现以下异常: 

SQLException: ORA-00917: missing comma

This is the instruction: 这是指令: 

stmt.executeUpdate("INSERT INTO question (idnum, question, option1, option2, option3, option4, answer) VALUES("+4+", "+question+", "+option1+", "+option2+", "+option3+", "+option4+", "+answer+")");

Any ideas how to fix the query? 任何想法如何解决查询?

4 个解决方案

解决方案1
 2  2013-07-07 22:32:11

Try this 尝试这个 

String sql = 
   "INSERT INTO question (idnum, question, option1, option2, option3, option4, answer)       VALUES(?, ?, ?, ?, ?, ?, ?)";
PreparedStatement preparedStatement = connection.prepareStatement(sql);

preparedStatement.setInt(1, 4);
preparedStatement.setString(2, question);
preparedStatement.setString(3, option1);
preparedStatement.setString(4, option2);
preparedStatement.setString(5, option3);
preparedStatement.setString(6, option4);
preparedStatement.setString(7, answer);

int rowsAffected = preparedStatement.executeUpdate();

解决方案2
 2  2013-07-07 22:36:17

First, the reason you are receiving an error is that you have a syntax error in your SQL. 首先,收到错误的原因是您的SQL中存在语法错误。 Simply printing the String you're creating would show you the problem. 简单地打印您正在创建的String将向您显示问题。

That said, you should be using prepared statements . 就是说,您应该使用准备好的语句 THere is simply no reason to construct the SQL manually. 根本没有理由手动构造SQL。 Not only does it avoid the problem you're having, it all but eliminates the chance your code is susceptible to SQL injection. 它不仅避免了您遇到的问题,而且还消除了您的代码容易受到SQL注入的机会。 

String query = "INSERT INTO question (idnum, question, option1, option2, option3, option4, answer) VALUES (?,?,?,?,?,?,?)";
PreparedStatement pstmt = conn.prepareStatement(query);
pstmt.setInt(1,4);
pstmt.setString(2,question);
// ... set all your params
pstmt.execute();

解决方案3
 1  2013-07-07 22:23:01

Change the double quotation " to to a single quote ' like this 像这样将双引号"更改为单引号' 

String query = "INSERT INTO question (idnum,question) values 
 (4 , "'"+question+"'")";

Note that only string needs ' , you can pass integers directly without using ' , however, I prefer to use PreparedStatement , as it's much easier and very strong with SQL injections. 请注意,只有字符串需要' ,您可以不使用'直接传递整数,但是,我更喜欢使用PreparedStatement ,因为它在SQL注入中更加容易并且非常强大。 

    PreparedStatement pr = conection.prepareStatement("insert into question(...) values(?,?,?,?...)");
    pr.setInt(1,4);
    pr.setString(2,"Some string");
//.....
 pr.executeUpdate();

解决方案4
 0  

尝试这个: 

 stmt.executeUpdate("INSERT INTO question (idnum, question, option1, option2, option3, option4, answer) VALUES("+4+", '"+question+"', '"+option1+"', '"+option2+"', '"+option3+"', '"+option4+"', '"+answer+"')"

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 Java JDBC 错误插入 - Java JDBC Error Insert into JDBC 插入错误 - JDBC insert error jdbc中插入语句中的错误 - error in insert statment in jdbc JDBC插入查询不会在数据库中插入记录 - JDBC insert query does not insert record in database JDBC MySQL查询错误? - JDBC MySQL query error? JDBC更新查询错误 - JDBC Update query error JDBC查询中的错误 - Error in JDBC query JDBC(Derby)INSERT查询因SQLSyntaxErrorException而失败 - JDBC (Derby) INSERT query fails with SQLSyntaxErrorException JDBC 请求是否适用于插入查询类型? - Does JDBC request working with Insert query type? 搜索/插入查询jdbc中的反斜杠(\\)和引号(') - Backslash (\) and Quote (') in search/insert query jdbc
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM