我有一个简单的表(名为test):
id | integer name | character varying(100) intval | integer当我尝试使用prepare语句在python中更新这样的名称。 (我使用的是python-pgsql http://pypi.python.org/pypi/python-pgsql/ )
>>> for i in db.execute("select * from test"): print i ... (1, 'FOO', None) >>> query = "UPDATE test set name = '$1' where name = '$2'" >>> cu.execute(query, "myname", "FOO") Traceback (most recent call last): File "<input>", line 1, in <module> File "/usr/lib/python2.7/site-packages/pgsql.py", line 119, in execute ret = self._source.execute(operation, params) ProgrammingError: ERROR: could not determine data type of parameter $1可以在http://sprunge.us/VgLY?python上看到该模块的演示文件。
I have a simple table (named test) as:
id | integer name | character varying(100) intval | integerWhen I try to use prepare statement to update the name like this in python. (I am using python-pgsql http://pypi.python.org/pypi/python-pgsql/)
>>> for i in db.execute("select * from test"): print i ... (1, 'FOO', None) >>> query = "UPDATE test set name = '$1' where name = '$2'" >>> cu.execute(query, "myname", "FOO") Traceback (most recent call last): File "<input>", line 1, in <module> File "/usr/lib/python2.7/site-packages/pgsql.py", line 119, in execute ret = self._source.execute(operation, params) ProgrammingError: ERROR: could not determine data type of parameter $1The demo file for the module can be seen at http://sprunge.us/VgLY?python.
最满意答案
我猜你的字符串里面的单引号可能是$1和$2 。 在PYGresql的主要变化中它说:
支持绑定参数,减少了对用户提供的数据的广泛,昂贵和易受攻击的引用的需要所以我假设单引号用过多的引号重载字符串,或者只是破坏了python-pgsql中的解析器。
I'm guessing that it could be your single quotes around $1 and $2 inside your string. In the main changes from PYGresql it says that:
support for bind parameters, alleviating the need for extensive, expensive and vulnerable quoting of user-supplied dataSo I'm assuming the single quotes are overloading the string with too many quotes, or just breaking the parser in python-pgsql.
更多推荐
发布评论