Text box question???

RinoDM · May 22nd, 2008, 01:34 PM

Hi to all...

I have a few text box's on my site and i would like to know how can i replace if a user enters a single quote ' and re-place it with nothing...

The problem i'm having is when a user enters a single quote i get an error on the page because this info gets inputed into a database...

Hope someone can help me...

Rino

joefawcett · May 23rd, 2008, 03:39 AM

Well you could trap the keypress or keydown event and replace the value in the box but it's not safe or user friendly. If you are using stored procedures and parameters then ' should be automatically be handled. If you're using dynamic SQL, poor practice in any case, then you normally need to double them up to '' (that's two single quotes) in your server-side code.

--

Joe (Microsoft MVP - XML)