JDBC(Derby)INSERT查询因SQLSyntaxErrorException而失败
我的INSERT查询因SQLSyntaxErrorException而失败。我试图检查我的表的结构,看看是否有错误的数据类型,但我一直收到这条消息。 请帮我确定导致此错误的原因。我被卡住了。我不确定我的组件引用是否正确。
我的.grab文件详细信息如下
String completeBirthday = getCompleteBirthdayFromComboBoxes();
String employmentStatus = getStringValue_Of_EmploymentStatus_Selected();
Connection con = DriverManager.getConnection(url, username, password);
Statement stat = con.createStatement();
String InsertQuery = "INSERT INTO EMPLOYEE(EMPLOYEE_ID,EMP_LASTNAME,EMP_FIRSTNAME,EMP_MIDDLENAME,ADDRESS,POSITION,GENDER,BIRTHMONTH,BIRTHDAY,BIRTHYEAR,EMAIL,YEARSOFEXPERIENCE,BASICSALARY,EMPLOYMENTSTATUS)"
+ "VALUES "
+ "(' "+AddEmployee_EmployeeID_TxtField.getText()+" ',' "
+ " "+AddEmployee_LastName_TxtField.getText()+" ',' "
+ " "+AddEmployee_FirstName_TxtField.getText()+" ',' "
+ " "+AddEmployee_MiddleName_TxtField.getText()+" ',' "
+ " "+AddEmployee_Address_TxtField.getText()+" ',' "
+ " "+AddEmployee_Position_TxtField.getText()+" ',' "
+ " "+AddEmployee_Gender_ComboBox.getSelectedItem()+" ',' "
+ " "+AddEmployee_BirthdayMonth_ComboBox.getSelectedItem()+" ',' "
+ " "+AddEmployee_BirthdayDay_ComboBox.getSelectedItem()+" ',' "
+ " "+AddEmployee_BirthdayYear_ComboBox.getSelectedItem()+" ',' "
+ " "+AddEmployee_Email_TxtField.getText()+" ',' "
+ " "+AddEmployee_YearsOfExperience_TxtField.getText()+" ',' "
+ " "+AddEmployee_BasicSalary_TxtField.getText()+" ',' "
+ " "+employmentStatus+" "
+ " ')"
;
stat.execute(InsertQuery); //execute() will run the insert query above.
JOptionPane.showMessageDialog(null,"Insert Success!");
我很感激任何帮助。提前谢谢。
2 个答案:
答案 0 :(得分:2)
正如问题评论中所述,您确实应该使用PreparedStatement来执行参数化查询,其中包括:
String insertQuery = "INSERT INTO EMPLOYEE(EMPLOYEE_ID,EMP_LASTNAME,EMP_FIRSTNAME,EMP_MIDDLENAME,ADDRESS,POSITION,GENDER,BIRTHMONTH,BIRTHDAY,BIRTHYEAR,EMAIL,YEARSOFEXPERIENCE,BASICSALARY,EMPLOYMENTSTATUS)"
+ "VALUES (?,?,?,?,?,?,?,?,?,?,?,?,?,?)";
PreparedStatement stat = con.prepareStatement(insertQuery);
stat.setString(1, AddEmployee_EmployeeID_TxtField.getText());
stat.setString(2, AddEmployee_LastName_TxtField.getText());
stat.setString(3, AddEmployee_FirstName_TxtField.getText());
stat.setString(4, AddEmployee_MiddleName_TxtField.getText());
stat.setString(5, AddEmployee_Address_TxtField.getText());
stat.setString(6, AddEmployee_Position_TxtField.getText());
stat.setString(7, AddEmployee_Gender_ComboBox.getSelectedItem());
stat.setString(8, AddEmployee_BirthdayMonth_ComboBox.getSelectedItem());
stat.setString(9, AddEmployee_BirthdayDay_ComboBox.getSelectedItem());
stat.setString(10, AddEmployee_BirthdayYear_ComboBox.getSelectedItem());
stat.setString(11, AddEmployee_Email_TxtField.getText());
stat.setInt(12, Integer.valueOf(AddEmployee_YearsOfExperience_TxtField.getText()));
stat.setInt(13, Integer.valueOf(AddEmployee_BasicSalary_TxtField.getText()));
stat.setString(14, employmentStatus);
stat.executeUpdate();
这种方法避免了不必担心引用字符串值的麻烦,并且可以防止SQL注入问题(例如,当LastName为“O'Brian”时,代码不会爆炸)
答案 1 :(得分:1)
尝试插入数字字段而不用'character
包围它像这样:
AddEmployee_BirthdayYear_ComboBox.getSelectedItem()+" ',' " + "
"+AddEmployee_Email_TxtField.getText()+" '," + "
"+AddEmployee_YearsOfExperience_TxtField.getText()+" , " + "
"+AddEmployee_BasicSalary_TxtField.getText()+" ,'
相关问题
- 使用嵌入式Derby,我可以插入临时表但不插入后查询
- Apache Derby:SQLSyntaxErrorException
- SQLSyntaxErrorException:不支持左操作数类型为“VARCHAR”且右操作数类型为“VARCHAR”的“+”运算符
- 使用JPA在Apache Derby中创建表的SQLSyntaxErrorException
- SQL语句SQLSyntaxErrorException
- JDBC(Derby)INSERT查询因SQLSyntaxErrorException而失败
- SQLSyntaxErrorException:Column' TEST'要么不在FROM列表中的任何表中,要么出现在连接规范中
- JDBC插入语句错误
- SQLSyntaxErrorException:语法错误:在遇到“ s”
- 带查询创建表的SQLSyntaxErrorException
最新问题
- 我写了这段代码,但我无法理解我的错误
- 我无法从一个代码实例的列表中删除 None 值,但我可以在另一个实例中。为什么它适用于一个细分市场而不适用于另一个细分市场?
- 是否有可能使 loadstring 不可能等于打印?卢阿
- java中的random.expovariate()
- Appscript 通过会议在 Google 日历中发送电子邮件和创建活动
- 为什么我的 Onclick 箭头功能在 React 中不起作用?
- 在此代码中是否有使用“this”的替代方法?
- 在 SQL Server 和 PostgreSQL 上查询,我如何从第一个表获得第二个表的可视化
- 每千个数字得到
- 更新了城市边界 KML 文件的来源?