Post reply

Using QUOTENAME()

  • August 19, 2018 at 11:28 pm

    #77370

    Comments posted to this topic are about the item Using QUOTENAME()

  • August 20, 2018 at 12:48 am

    #2002433

    Nice question to start the week on, thanks Steve

    ____________________________________________
    Space, the final frontier? not any more...
    All limits henceforth are self-imposed.
    “libera tute vulgaris ex”

  • August 20, 2018 at 1:33 am

    #2002435

    Two points on the quotename function, the second parameter is the optional quote character and the function implicitly converts any input into nvarchar(258), except the XML data type.
    😎

  • August 20, 2018 at 5:47 am

    #2002452

    nice question steve
    ta

    ---------------------------------------------------------------------------------------
    The more you know, the more you know that you dont know

  • August 20, 2018 at 8:20 am

    #2002488

    I only got this because Ken Fisher talked about at the North Texas SQL User group last Thursday 🙂

    ------------------------------------------------------------------------------------------------Standing in the gap between Consultant and ContractorKevin3NFDallasDBAs.com/BlogWhy is my SQL Log File HUGE?!?![/url]The future of the DBA role...[/url]SQL Security Model in Plain English[/url]

  • August 20, 2018 at 11:31 am

    #2002530

    One other important point (and, to me, the best reason to use QUOTENAME), is the built-in escaping of certain characters, which helps to prevent SQL Injection attacks in certain scenarios.

    SELECT QUOTENAME('[]"''');

Viewing 6 posts - 1 through 6 (of 6 total)

You must be logged in to reply to this topic. Login to reply

Cookies on SQLServerCentral

This website stores cookies on your computer.

These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media.

To find out more about the cookies we use, see our Privacy Policy