Forums Register Login

Use Multiple Insert Statements in Prepared Statements

+Pie Number of slices to send: Send
Hi Friends

i am stuck in a problem for which i need your help.i will brief you about the issue below.

I am having Multiple Insert Statements which i need to execute to put the data in the database.i have a doubt about the use of the executeUpdate() function in the statement interface. sample code is as below.

stmt = conn.prepareStatement("INSERT INTO Client ( clientPk, provincePk, countryPk, statusPk, branchPk, salutation, ) VALUES(PID, 2, '123123123', '123', '66', 1, 1 );");
int n =stmt.executeUpdate();

Now the problem is how do i insert multiple Insert statements using the conn.prepareStatement().should i do like
stmt = conn.prepareStatement("")
int n =stmt.executeUpdate();
stmt = conn.prepareStatement("")
int n =stmt.executeUpdate();
stmt = conn.prepareStatement("")
int n =stmt.executeUpdate(); ..................................

should i use the same steps to execute each individual query and then use executeUpdate().
Please let me know the correct procedure to be followed to execute these tasks.waiting for a positive reply from your side.

Thanks & Regards
Vikram K
+Pie Number of slices to send: Send
 

Originally posted by vikram karne:

I am having Multiple Insert Statements which i need to execute to put the data in the database.



Are you inserting in same table every time? if yes, then you can use addBatch() method of PreparedStatement class, to inster multiple data.

Also use place holders when you create a prepared statment, the code you have posted here,is not suggested way of using prepared Statement




rather you should make a prepared statment like




If you make perparestatement using place holders, then you can resue same.


Thanks,
Shailesh
+Pie Number of slices to send: Send
No, you do not need to call prepareStatement() every line. If the SQL code to perform the insert is not changing, you can call the same prepareStatement() object multiple times with different parameters such as:



The trick is to replace the data with "?" with the stuff you need changed every line. This code is a lot safer (from SQL injection) and performance than what you had. For completeness, you should really replace every input parameter with ? and use setString/setDouble/etc to set it.
Well don't expect me to do the dishes! This ad has been cleaned for your convenience:
a bit of art, as a gift, that will fit in a stocking
https://gardener-gift.com


reply
reply
This thread has been viewed 7008 times.
Similar Threads
Auto Increment ID Field Table in the Oracle Database
SQL syntax error
About getGeneratedKeys()
Error inserting byte[] to Oracle BLOB
Class.forName error
More...

All times above are in ranch (not your local) time.
The current ranch time is
Mar 28, 2024 15:45:48.