As long as the Criteria value object is a String, you don't 
have to worry. The code should be calling the following 
method: 

SqlExpression.quoteAndEscapeText(String rawText, DB db)

This surrounds the value with the correct quotes and 
escapes stuff based on the type of DB.

> -----Original Message-----
> From: Martin Tilsted [mailto:tiller@daimi.au.dk]
> Sent: Friday, March 07, 2008 1:01 PM
> To: Apache Torque Users List
> Subject: What is the best way to escape input to SqlEnum.CUSTOM?
> 
> What is the best way to escape a (user input) value that is used as
> part
> of a SqlEnum.CUSTOM query?
> 
> Is there a method that will escape strings based on the requirements
of
> the current open database connection?
> 
> Martin
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: torque-user-unsubscribe@db.apache.org
> For additional commands, e-mail: torque-user-help@db.apache.org

DukeCE Privacy Statement:
Please be advised that this e-mail and any files transmitted with
it are confidential communication or may otherwise be privileged or
confidential and are intended solely for the individual or entity
to whom they are addressed. If you are not the intended recipient
you may not rely on the contents of this email or any attachments,
and we ask that you please not read, copy or retransmit this
communication, but reply to the sender and destroy the email, its
contents, and all copies thereof immediately. Any unauthorized
dissemination, distribution or copying of this communication is
strictly prohibited.

---------------------------------------------------------------------
To unsubscribe, e-mail: torque-user-unsubscribe@db.apache.org
For additional commands, e-mail: torque-user-help@db.apache.org