How to escape special characters like ' in sqlite in android

android special-characters sqlite

Solution 1:

The SQL standard specifies that single-quotes in strings are escaped by putting two single quotes in a row. SQL works like the Pascal programming language in the regard. SQLite follows this standard. Example:

INSERT INTO xyz VALUES('5 O''clock');

Ref : SQLite FAQ

Solution 2:

The best way is to use a native Android method designed for exactly this purpose:

DatabaseUtils.sqlEscapeString(String)

Here is the documentation for it online:

  • sqlEscapeString() on Android Developers

The main advantage of using this method, in my opinion, is the self-documentation because of the clear method name.

Related

Uses for multiple levels of pointer dereferences?
Why does the ternary operator unexpectedly cast integers?
How can I convert a .jar to an .exe?
Causes of MySQL error 2014 Cannot execute queries while other unbuffered queries are active
Prevent long running javascript from locking up browser
jQuery selector value escaping
What's the purpose of try-with-resources statements?
Why would the behavior of std::memcpy be undefined for objects that are not TriviallyCopyable?
Open Image from file, then release lock?
Convert regular Python string to raw string
How do you clone a BufferedImage
Java: Literal percent sign in printf statement