Error inserting data into varchar that contains apostrophe?

Question

I have ruby script that includes a mysql insert that is working fine until it gets to a row that contains data containing an apostrophe. This row is also being populated using a variable and Im unsure how to escape the character so the insert will work successfully.

Any ideas?

score 1 · Accepted Answer · edited May 23 '17 at 12:22

1

Use the quote method on the connection object:

quote(value, column = nil)

API Documentation Link

Quotes the column value to help prevent SQL injection attacks. Example:

my_name    = ActiveRecord::Base.connection.quote("John O'Neil")
my_address = ActiveRecord::Base.connection.quote("R'lyeh")

query = "INSERT INTO companies (name,address) VALUES (#{my_name}, #{my_address})"

ActiveRecord::Base.connection.execute(query);

Original Post:

See this post: Escaping a single quotation within SQL query

edited May 23 '17 at 12:22

Community

1
1

answered Aug 15 '15 at 21:39

Md Sirajus Salayhin

4,974
5
37
46

You might want to at least give someone credit when copying [their answer](http://stackoverflow.com/a/8179894/479863). – mu is too short Aug 15 '15 at 21:55
sorry @muistooshort, already updated my answer with original link. – Md Sirajus Salayhin Aug 15 '15 at 21:59

Error inserting data into varchar that contains apostrophe?

1 Answers1