> That seems like a lame argument to me. If you want to stick > to defining cfqueryparam that way then I might as well > request a new tag, cfqueryparmthatdoesntusebinding, that does > everything that I want it to do without doing parameter > binding. Then we could both have our way but somehow that > doesn't feel like the spirit of what a high-level language > like CF should be.
All of the functionality of CFQUERYPARAM is completely dependent on the fact that it creates a bound parameter. Type-checking, security, performance, all of those things come from the database, not from CF. So, yes, that's how I'll define CFQUERYPARAM - it's a tag that creates a bound parameter. If you want a tag that does something else, that's all well and good, but that has nothing to do with what CFQUERYPARAM actually does. > I completely conceed that it would be difficult to guarantee > perfect security the way that a bound parameter would. My > essential point is that it would be better for everyone if > all code could be written with cfqueryparam and the benefits > of query binding could be enjoyed in every case except those > few times where it gets in the way, even if that meant not > having 100% perfect security during those few moments when it > was disabled. That does not seem like an unreasonable point > of view to me. But what exactly would this tag do, if not create a bound parameter? It sounds like what you really want is an off switch. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ Fig Leaf Software provides the highest caliber vendor-authorized instruction at our training centers in Washington DC, Atlanta, Chicago, Baltimore, Northern Virginia, or on-site at your location. Visit http://training.figleaf.com/ for more information! This email has been processed by SmoothZap - www.smoothwall.net ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| ColdFusion 8 - Build next generation apps today, with easy PDF and Ajax features - download now http://download.macromedia.com/pub/labs/coldfusion/cf8_beta_whatsnew_052907.pdf Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:285780 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
