Software download

What is the difference between $and pound number in mybatis?

Software download Contribution 2022-06-06 09:34:39 browse

#It is equivalent to adding double quotation marks to data, and $is equivalent to directly displaying data

1. # Treat the incoming data as a string and add a double quotation mark to the automatically incoming data. For example: order by # user_id #, if the value passed in is 111, the value parsed into sql is order by "111"; if the value passed in is id, the sql parsed into sql is order by "id"

2. $directly displays and generates the incoming data in sql. For example: order by $user_id $. If the value passed in is 111, the value parsed into sql is order by user_id. If the value passed in is id, the sql parsed into sql is order by id

3. # mode can prevent SQL injection to a large extent.

4. The $mode cannot prevent Sql injection.

5. The $method is generally used to pass in database objects, such as table names

6. Don't use $if you can use #

When using the order by dynamic parameter in MyBatis sorting, note that $is used instead of#

String Replacement

By default, using the # {} format syntax will cause MyBatis to create a preprocessed statement property and set a safe value (such as?) against it. This is very safe and fast. It is also the first choice. Sometimes you just want to insert an unchanged string directly into the SQL statement. For example, like ORDER BY, you can use it as follows:

ORDER BY ${columnName}

MyBatis does not modify or escape strings here.

Important: It is unsafe to accept the output from the user and provide it to the invariant string in the statement. This will lead to potential SQL injection attacks, so you should not allow users to enter these fields, or usually escape and check

#{} Used to query CRUD statements

${} is used for fuzzy query (remember to add%%)

The difference between pound sign and $in mybatis (sorry, pound sign cannot be used for headlines)

"Sincere appreciation and lingering fragrance"

Seeking Resources Network

Sincere appreciation and lingering fragrance

use WeChat Scan QR code to complete payment

Please specify: home page  >  Contribution » What is the difference between $and pound number in mybatis?

Previous: Mybatis working principle (mybatis working principle analysis)
Next: Differences between Mybatis and Hibernate (in-depth analysis of the differences and uses between Mybatis and Hibernate)
You may like:
Continue to browse about programming 's article
Comment
Messages and comments (shared zero Comments)
   
Verification Code:
Copyright Notice

All cracking patches, software, and other analysis articles released by Qiaoyuan.com are only for learning and research purposes; The above contents shall not be used for commercial or illegal purposes.
Otherwise, the user shall bear all consequences. The information of this website comes from the network, and the copyright dispute has nothing to do with this website. You must completely delete the above content from your computer within 24 hours after downloading. If you like this program, please support genuine software, purchase and register, and get better genuine services. In case of infringement, please contact us by email.

Hot software
Hot evaluation software
Random software
Top search
Copyright Your WebSite.Some Rights Reserved.| Site Map
E ICP B No. 2022003045-2 |