pyodbc - How to perform a select statement using a variable for a parameter

You are also able to parameterize statements:

...cursor.execute("select * from Throughput where DeviceName = ?", data['DeviceName'])...

This a better approach for the following reasons:

Protection against SQL injection (you should always validate user input regardless of whether parameterized or dynamic SQL is used)
You don't have to worry about escaping where clause values with single quotes since parameters are passed to the database separately
SQL is prepared once, subsequent executions of the query use the prepared statement instead of recompiling

python sql variables select pyodbc

I don't know if my problem is similar to yours or not but my problem was because I had written a query likeWHERE date > ?" "OR date NOT LIKE '9%'and I'd forgotten to put a simple space (' ') either at the end of the 1st line or the end of the 2nd one. Finally I resolved it just with doing this. And the final code looks like:

WHERE date > ? "            "OR date NOT LIKE '9%'

note: pay attention to the final ' ' at the end of the 1st line.

CodeHunter

pyodbc - How to perform a select statement using a variable for a parameter

Recent Posts

How can I color dots in a xy scatterplot according to column value?

How to update a claim in ASP.NET Identity?

What does {0} mean when initializing an object?

Accessing members of items in a JSONArray with Java

How to log SQL statements in Spring Boot?

Powershell Get-WebSite name parameter is ignored

How to detect scroll to bottom of html element

Java synchronized method

How to test controllers with CodeIgniter?

Detect Visual Composer

Matplotlib: Specify format of floats for tick labels

Rails join a list of strings with commas and "and" before the last