wood burning stoves 2.0*
The moose likes Spring and the fly likes Can you use jdbcTemplate QueryForList with SQL Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of The Java EE 7 Tutorial Volume 1 or Volume 2 this week in the Java EE forum
or jQuery UI in Action in the JavaScript forum!
JavaRanch » Java Forums » Frameworks » Spring
Bookmark "Can you use jdbcTemplate QueryForList with SQL "in" Expression?" Watch "Can you use jdbcTemplate QueryForList with SQL "in" Expression?" New topic
Author

Can you use jdbcTemplate QueryForList with SQL "in" Expression?

Mike London
Ranch Hand

Joined: Jul 12, 2002
Posts: 1064
Does the queryForList work when you have an "in" expression in your SQL like this:

Select * from CUSTOMER where CUST_ID in (1,5,7,9)

My question is whether the "in" is supported in queryForList?

We seem to be having problems with it and all the examples I've seen don't use it.

Is there a better JDBCTemplate method to use for multiple "in" values?

Thanks,

mike
Saifuddin Merchant
Ranch Hand

Joined: Feb 08, 2009
Posts: 605

JDBC prepared statements does not supported "in" clause for multiple values due to SQL injection attack security issue

Any code based on prepared statements (JDBC templates) does not support 'IN' clauses in queries.

Here is a good resource that provide alternate approaches
http://www.javaranch.com/journal/200510/Journal200510.jsp#a2


Cheers - Sam.
Twisters - The new age Java Quiz || My Blog
 
It is sorta covered in the JavaRanch Style Guide.
 
subject: Can you use jdbcTemplate QueryForList with SQL "in" Expression?