Why?

– by 3

Consider this method declaration:

A) "SET SESSION AUTHORIZATION " + user
B) "SET SESSION AUTHORIZATION " + stmt.enquoteIdentifier(user) Is A or B the correct replacement for <EXPRESSION> and why?
A. A, because it sends exactly the value of user provided by the calling code.
B. B, because enquoting values provided by the calling code prevents SQL injection.
C. A and B are functionally equivalent.
D. A, because it is unnecessary to enclose identifiers in quotes.
E. B, because all values provided by the calling code should be enquoted.

Download Printable PDF. VALID exam to help you PASS.

3 thoughts on “Why?

    1. B cannot be correct because enquoteIdentifier() has 2 params. –
      enquoteIdentifier​(String identifier, boolean alwaysQuote)

      3
      Reply

Leave a Reply

Your email address will not be published. Required fields are marked *


The reCAPTCHA verification period has expired. Please reload the page.