Teemu Välimäki schreef:
On Wednesday 12 March 2008 14:21:43 Isaak Malik wrote:
I think the question would rather be: "why should they be quoted?", if
the value is validated as a numeric value there is no need to quote them
because there are no reserved numeric keywords in SQL and it's no threat
to not quote them.
I want to make it clear, that I am not pushing for the idea of quoting
everything just because it would be possible. The question came to when I
looked at a query where two out of three integer values were quoted. Those
two came probably as a string and the one did not, just like you said it
should work. However, if we fail to detect the correct type, then why not
simply quote everything for consistency. Of course, this is hardly an issue.
Well, it's not really "failing to detect the correct type", if the value
has been passed as a string it's very normal that these are being
quoted, so the Zend FW is doing its work. If this troubles you why not
(int) or (float) them before they are being passed?
If the value can also be non-numeric types then you should just ignore
this, as this can do no harm :).
--
Isaak Malik
Web Developer
[EMAIL PROTECTED]
