我拉着我的头发试图找到下面的SqlExcpetion的原因。我使用的是Oracle Database 11g Express和SqlDeveloper。我查看了其他帖子,但到目前为止没有任何帮助。
java.sql.SQLException: ORA-00917: missing comma
at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:447)
at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:396)
at oracle.jdbc.driver.T4C8Oall.processError(T4C8Oall.java:951)
at oracle.jdbc.driver.T4CTTIfun.receive(T4CTTIfun.java:513)
at oracle.jdbc.driver.T4CTTIfun.doRPC(T4CTTIfun.java:227)
at oracle.jdbc.driver.T4C8Oall.doOALL(T4C8Oall.java:531)
at oracle.jdbc.driver.T4CStatement.doOall8(T4CStatement.java:195)
at oracle.jdbc.driver.T4CStatement.executeForRows(T4CStatement.java:1029)
at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:1336)
at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:1498)
at oracle.jdbc.driver.OracleStatementWrapper.executeQuery(OracleStatementWrapper.java:406)
at com.ets.hr.dao.EmployeeDAO.createEmployee(EmployeeDAO.java:30)
at Test.main(Test.java:62)
以下方法:
public void createEmployee(Employee e){
try{
Class.forName(oracleClass);
Connection conn = DriverManager.getConnection(oracleUrl, "hr", "hr");
Statement s = conn.createStatement();
String query = "INSERT INTO employees VALUES(" +
e.getEmployeeId() + ", '" +
e.getFirstName() + "', '" +
e.getLastName() + "', '" +
e.getEmail() + "', '" +
e.getPhoneNumber() + "', " +
e.getHireDate() + ", '" +
e.getJobId() + "', " +
e.getSalary() + ", " +
e.getCommissionPct() + ", " +
e.getManagerId() + ", " +
e.getDepartmentId() + ")";
s.executeQuery(query);//LINE 30 - SqlException Here
System.out.println("Query Executed: Create Employee");
}
catch(SQLException se){
se.printStackTrace();
}
catch(ClassNotFoundException ce){
ce.printStackTrace();
}
}
员工类:
package com.ets.hr.dto;
import java.util.Date;
public class Employee {
//CONSTRUCTORS
public Employee(){}
public Employee(long eId,
String firstName,
String lastName,
String email,
String phoneNumber,
Date hireDate,
String jobId,
double salary,
double commissionPct,
long managerId,
long departmentId){
this.firstName = firstName;
this.lastName = lastName;
this.email = email;
this.phoneNumber = phoneNumber;
this.hireDate = hireDate;
this.jobId = jobId;
this.salary = salary;
this.commissionPct = commissionPct;
this.managerId = managerId;
this.departmentId = departmentId;
}
//instance variables (from HR.EMPLOYEE table)
private long employeeId;
private String firstName;
private String lastName;
private String email;
private String phoneNumber;
private Date hireDate;
private String jobId;
private double salary;
private double commissionPct;
private long managerId;
private long departmentId;
//GETTERS
public long getEmployeeId(){
return this.employeeId;
}
public String getFirstName(){
return this.firstName;
}
public String getLastName(){
return this.lastName;
}
public String getEmail(){
return this.email;
}
public String getPhoneNumber(){
return this.phoneNumber;
}
public Date getHireDate(){
return this.hireDate;
}
public String getJobId(){
return this.jobId;
}
public double getSalary(){
return this.salary;
}
public double getCommissionPct(){
return this.commissionPct;
}
public long getManagerId(){
return this.managerId;
}
public long getDepartmentId(){
return this.departmentId;
}
//SETTERS
public void setEmployeeId(long employeeId){
this.employeeId = employeeId;
}
public void setFirstName(String firstName){
this.firstName = firstName;
}
public void setLastName(String lastName){
this.lastName = lastName;
}
public void setEmail(String email){
this.email = email;
}
public void setPhoneNumber(String phoneNumber){
this.phoneNumber = phoneNumber;
}
public void setHireDate(Date hireDate){
this.hireDate = hireDate;
}
public void setJobId(String jobId){
this.jobId = jobId;
}
public void setSalary(double salary){
this.salary = salary;
}
public void setCommissionPct(double commissionPct){
this.commissionPct = commissionPct;
}
public void setManagerId(long managerId){
this.managerId = managerId;
}
public void setDepartmentId(long departmentId){
this.departmentId = departmentId;
}
public void printEmployee(){
System.out.println("Employee ID: " + this.getEmployeeId());
System.out.println("Employee Name: " + this.getFirstName() + this.getLastName());
System.out.println("Employee Email: " + this.getEmail());
System.out.println("Employee Phone: " + this.getPhoneNumber());
System.out.println("Employee Hire Date: " + this.getHireDate());
System.out.println("Employee Job ID: " + this.getJobId());
System.out.println("Employee Salary: " + this.getSalary());
System.out.println("Employee Commission Pct: " + this.getCommissionPct());
System.out.println("Employee Manager ID: " + this.getManagerId());
System.out.println("Employee Department ID: " + this.getDepartmentId());
}
}
答案 0 :(得分:1)
看起来下列方法之一正在生成数据库期望引用/转义的值(可能包含逗号本身或其他数据库特殊字符):
e.getEmployeeId()
e.getHireDate()
e.getSalary()
e.getCommissionPct()
e.getManagerId()
e.getDepartmentId()
我建议查看PreparedStatement类来帮助解决这类错误(以及防范基于SQL的安全漏洞)。
答案 1 :(得分:1)
您不应该尝试构建自己的SQL字符串,因为您必须处理引用和转义(这里已经咬过你)。
相反,使用PreparedStatement并让JDBC API转义,引用和格式化(例如日期)您的值
String query = "INSERT INTO employees VALUES (?,?,?,?,?,?,?,?,?,?,?)";
PreparedStatement ps = conn.prepareStatement(query);
ps.setInt(e.getEmployeeId(), 1);
ps.setString(e.getFirstName(), 2);
ps.setDate(e.getHireDate(), 6);
// etc - there is a setter for each basic datatype
ps.execute();
ps.close();
编码更容易,可读性也越来越高。
答案 2 :(得分:0)
正如OldProgrammer所提到的,而不是像这样嵌入值
Statement s = conn.createStatement();
String query = "INSERT INTO employees VALUES(" +
e.getEmployeeId() + ", '" +
e.getFirstName() + "', '" +
e.getLastName() + "', '" +
e.getEmail() + "', '" +
e.getPhoneNumber() + "', " +
e.getHireDate() + ", '" +
e.getJobId() + "', " +
e.getSalary() + ", " +
e.getCommissionPct() + ", " +
e.getManagerId() + ", " +
e.getDepartmentId() + ")";
s.executeQuery(query);
您可以使用PreparedStatement,然后在放入值时忽略/转义任何特殊的SQL语法。尝试这样做
String query = "INSERT INTO employees VALUES(?,?,?,?,?,?,?,?,?,?,?)";
PreparedStatement ps = conn.prepareStatement(query);
ps.setInt(1, e.getEmployeeId());
ps.setString(2, e.getFirstName());
//.... etc for the rest of your parameters