Wrox Programmer Forums
Go Back   Wrox Programmer Forums > ASP.NET and ASP > ASP.NET 2.0 > ASP.NET 2.0 Basics
ASP.NET 2.0 Basics If you are new to ASP or ASP.NET programming with version 2.0, this is the forum to begin asking questions. Please also see the Visual Web Developer 2005 forum.
Welcome to the p2p.wrox.com Forums.

You are currently viewing the ASP.NET 2.0 Basics section of the Wrox Programmer to Programmer discussions. This is a community of software programmers and website developers including Wrox book authors and readers. New member registration was closed in 2019. New posts were shut off and the site was archived into this static format as of October 1, 2020. If you require technical support for a Wrox book please contact http://hub.wiley.com
Old May 17th, 2006, 03:26 PM
Authorized User
Join Date: Apr 2005
Posts: 94
Thanks: 0
Thanked 0 Times in 0 Posts
Default SQL vs ASP.NET..escape characters haunting

Hey all,

I have a crazy predictament. Seeing how I am gettng the login directly from windows anyway, i have not been needing to worry too much about sql inject but i would like to uniform everything.
I use WindowsIdentity to retrieve a login which comes like "domain\login". When I put this info into a parameter and send it over as a query it comes over like this:

If I put it directly in the query string like this:
@"Select * where loginid = '" + curruser.Name + "'";
 It will work, anyone have an explaination and way around this so I can parameterize this?

I do know that \ is an escape character and needs to be \\ to be seen as a single on in a string but SQL doesn't follow the same rules hehe.

Similar Threads
Thread Thread Starter Forum Replies Last Post
ASP.NET 1.1,VB.NET,crystal reports, SQl server gvi Crystal Reports 1 September 11th, 2008 02:55 AM
Enabling Arabic characters in ASP.NET-Oracle Appli abinashpatra ASP.NET 1.0 and 1.1 Basics 0 November 8th, 2005 12:21 AM
XML escape characters ACE2084 XML 0 September 9th, 2005 03:12 PM
how to escape special characters? reddygaru XML 2 December 16th, 2003 07:13 AM

Powered by vBulletin®
Copyright ©2000 - 2020, Jelsoft Enterprises Ltd.
Copyright (c) 2020 John Wiley & Sons, Inc.