Something More Elegant
Victor Subervi
victorsubervi at gmail.com
Sun Jan 17 13:06:11 EST 2010
On Sat, Jan 9, 2010 at 1:00 PM, Dennis Lee Bieber <wlfraed at ix.netcom.com>wrote:
> After the table design is complete you can move to business logic
> operations (SQL for standard/fixed actions), along with criteria to
> maintain the integrity of the data (foreign key constraints, etc.). This
> should result in a set of SQL statements that are parameterized so that
> only end-user data VALUES need to be supplied -- no ad hoc creation of
> SQL by plugging in table names or column names (and especially no such
> where the plugged in names were directly entered by the end-user -- I
> acknowledge that there are some situations where generating SQL is
> useful -- typically when you give the end user a dynamic search page*)
>
Can you please give me an example of what I *shouldn't* do in the above?
TIA,
beno
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.python.org/pipermail/python-list/attachments/20100117/f3a453c9/attachment-0001.html>
More information about the Python-list
mailing list