> I'm a programmer of 3 years now and only started coding in CF about a year > ago whilst my database > knowledge is not that great one marked difference (my very little experience > anyway) from speaking > to my CF colleagues is that most of them refuses to use stored procedure or > even views, their main > point of arguement is that cfqueryparam pre-compiles, does data type > validation and foils sql injection etc.. > > But coming from the other side (.NET C# realm), everything I did as far as > SQL was concerned was > done in the database, it was also very easy to port some of my C# code to CF > and now vice-versa > since my database logic was and is totally separate from the code base. > > Why not let database do what is was made for.....am I missing something here?
No, you're not really missing anything here. That said, your colleagues are also right, in a sense. Prepared statements do provide the same functionality with regard to data type validation, performance, and SQ as identical stored procedures. Beyond that, though, each provides specific advantages not found by the other. The advantages of stored procedures over prepared statements. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ Fig Leaf Software provides the highest caliber vendor-authorized instruction at our training centers in Washington DC, Atlanta, Chicago, Baltimore, Northern Virginia, or on-site at your location. Visit http://training.figleaf.com/ for more information! ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;207172674;29440083;f Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:317080 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
