本文整理汇总了Python中MySQLdb.escape_string函数的典型用法代码示例。如果您正苦于以下问题:Python escape_string函数的具体用法?Python escape_string怎么用?Python escape_string使用的例子?那么恭喜您, 这里精选的函数代码示例或许可以为您提供帮助。
在下文中一共展示了escape_string函数的20个代码示例,这些例子默认根据受欢迎程度排序。您可以为喜欢或者感觉有用的代码点赞,您的评价将有助于我们的系统推荐出更棒的Python代码示例。
示例1: train
def train(self, clas, docs):
"""
Trains the Bayesian Classifier with the given input data.
:param clas: string representing the class
:param docs: list of docs, each of which is a list of words (w/ repeats)
"""
cur = self.conn.cursor()
clas = escape_string(clas)
self._setup_db(clas)
#Adds documents to database.
for doc in docs:
counts = Counter(doc)
for term, count in counts.iteritems():
cur.execute("SELECT count from {} WHERE term = ?;".format(clas), (escape_string(term),))
currCount = cur.fetchone()
if currCount != None:
count = currCount[0] + count
self.conn.execute("UPDATE {} SET count = ? WHERE term = ?;".format(clas), (count, escape_string(term)))
else:
self.conn.execute("INSERT INTO {} VALUES(?, ?);".format(clas), (escape_string(term), count))
#Update doc nums.
cur.execute("SELECT count FROM doc_nums WHERE class = ?", (clas,))
num = cur.fetchone()[0]
self.conn.execute("UPDATE doc_nums SET count = ? WHERE class = ?;", (num+1, clas))
self.conn.commit()
开发者ID:ecsalina,项目名称:bayes,代码行数:29,代码来源:MultinomialNaiveBayes.py
示例2: transactions
def transactions(self,**args):
self.common()
begin_date=args.get('begin_date','')
end_date=args.get('end_date','')
what=args.get('what','')
action=args.get('action','SALE')
deleteid=args.get('deleteid','0')
if int(deleteid) >0:
Transaction.delete(deleteid)
self._transactionstemplate.begin_date=begin_date
self._transactionstemplate.end_date=end_date
self._transactionstemplate.what=what
self._transactionstemplate.action=action
self._transactionstemplate.transactions=[]
if begin_date and end_date:
self._transactionstemplate.transactions=list(Transaction.select("""
transactionLog.date >= '%s' AND
transactionLog.date <= ADDDATE('%s',INTERVAL 1 DAY) AND
transactionLog.info LIKE '%%%s%%' AND
transactionLog.action LIKE '%%%s%%'
""" % (escape_string(begin_date),escape_string(end_date),escape_string(what),escape_string(action))))
return self._transactionstemplate.respond()
开发者ID:aliceriot,项目名称:infoshopkeeper,代码行数:28,代码来源:server.py
示例3: sanitize_json
def sanitize_json(json):
if isinstance(json, basestring):
# Escape all strings
return escape_string(json)
elif isinstance(json, list):
return [sanitize_json(item) for item in json]
elif isinstance(json, dict):
return {escape_string(key):sanitize_json(value) for key,value in json.items()}
else: # Int, float, True, False, None don't need to be sanitized
return json
开发者ID:samkhal,项目名称:course-eval-viewer,代码行数:10,代码来源:DataTables.py
示例4: updateVariableDescriptionTable
def updateVariableDescriptionTable(self):
self.memoryCode = self.fastLookupTableIfNecessary()
code = (
"""DELETE FROM masterVariableTable WHERE dbname="%(field)s";
INSERT INTO masterVariableTable
(dbname, name, type, tablename, anchor, alias, status,description)
VALUES
('%(field)s','%(field)s','%(type)s','%(finalTable)s','%(anchor)s','%(alias)s','%(status)s','') """
% self.__dict__
)
self.dbToPutIn.query(code)
if not self.unique:
code = self.fastSQLTable()
try:
parentTab = self.dbToPutIn.query(
"""
SELECT tablename FROM masterVariableTable
WHERE dbname='%s'"""
% self.fastAnchor
).fetchall()[0][0]
except:
parentTab = "fastcat"
self.dbToPutIn.query(
'DELETE FROM masterTableTable WHERE masterTableTable.tablename="%s";' % (self.field + "heap")
)
self.dbToPutIn.query(
"INSERT INTO masterTableTable VALUES ('%s','%s','%s')"
% (self.field + "heap", parentTab, escape_string(code))
)
if self.datatype == "categorical":
# Variable Info
code = (
"""
DELETE FROM masterVariableTable WHERE dbname='%(field)s__id';
INSERT IGNORE INTO masterVariableTable
(dbname, name, type, tablename,
anchor, alias, status,description)
VALUES
('%(field)s__id','%(field)s','lookup','%(fasttab)s',
'%(anchor)s','%(alias)s','hidden','') """
% self.__dict__
)
self.dbToPutIn.query(code)
# Separate Table Info
code = self.fastLookupTableIfNecessary()
self.dbToPutIn.query(
'DELETE FROM masterTableTable WHERE masterTableTable.tablename="%s";' % (self.field + "Lookup")
)
self.dbToPutIn.query(
"INSERT INTO masterTableTable VALUES ('%s','%s','%s')"
% (self.field + "Lookup", self.fasttab, escape_string(code))
)
开发者ID:jonathandfitzgerald,项目名称:BookwormDB,代码行数:53,代码来源:variableSet.py
示例5: escape
def escape(self, value):
""" 转义MySQL """
if isinstance(value, (tuple, list)):
return [self.escape(v) for v in value]
elif isinstance(value, str):
return escape_string(value)
elif isinstance(value, unicode):
return escape_string(value.encode('utf-8'))
elif isinstance(value, (int, long, float)):
return str(value)
else:
return value
开发者ID:coldnight,项目名称:vlog,代码行数:12,代码来源:mysql.py
示例6: search
def search(self,author="",title=""):
searchform = widgets.TableForm(fields=SearchFields(), submit_text="Search!")
if author == "" and title=="":
the_titles=False
else:
the_titles=Title.select("""
book.title_id=title.id AND
book.status ='STOCK' AND
author.id=author_title.author_id AND
author_title.title_id=title.id AND author.author_name LIKE '%%%s%%' AND title.booktitle LIKE '%%%s%%'
""" % (escape_string(author),escape_string(title)),orderBy="booktitle",clauseTables=['book','author','author_title'],distinct=True)
return dict(the_titles=the_titles,authorswidget=AuthorsWidget(),titlelistwidget=TitleListWidget(),searchform=searchform,values=dict(author=author,title=title))
开发者ID:aliceriot,项目名称:infoshopkeeper,代码行数:12,代码来源:controllers.py
示例7: insert_table
def insert_table(datas):
sql = "INSERT INTO %s (Hash, item_name, item_price, item_link, item_category) \
values('%s', '%s', '%s', '%s', '%s')" % (SQL_TABLE,
hashlib.sha224(datas['item_name']).hexdigest(),
escape_string(datas['item_name']),
escape_string(datas['item_price']),
escape_string(datas['item_link']),
escape_string(datas['item_category'])
)
# print sql
if cursor.execute(sql):
print "Inserted"
else:
print "Something wrong"
开发者ID:clasense4,项目名称:scrapy-rakitan,代码行数:14,代码来源:spider.py
示例8: query
def query(self, sql, *params):
cur = self.db.cursor()
sql= escape_string(sql)
cur.execute(sql, *params)
r = ResultSet(cur.fetchall())
cur.close()
return r
开发者ID:rafael146,项目名称:workufal,代码行数:7,代码来源:database.py
示例9: insertInDatabase
def insertInDatabase(table, **args):
"""
returns valid SQL Code for insertion
"""
fields = ','.join(args.keys())
values = ','.join(['"%s"' % escape_string(i) for i in args.values()])
return "INSERT INTO %s (%s) VALUES (%s)" % (table, fields, values)
开发者ID:louhibi,项目名称:tools,代码行数:7,代码来源:sursql.py
示例10: get_old_message_from_user
def get_old_message_from_user(cls, open_id, page, count_of_page, last_message_id=None):
"""
获取一页资源小助手信息
:param open_id: 用户openid
:param page: 页数
:param count_of_page: 每页记录数
:param last_message_id: 在那条记录之前
:return:
"""
cache_key = 'sign_resource_helper_' + open_id
# 记录下当前阅读时间
redis_client.set(cache_key, datetime.datetime.now().strftime('%Y-%m-%d %H:%M:%S'))
able_look_time = model_manager['BusinessCardModel'].get_user_create_time(open_id)
if not able_look_time:
able_look_time = datetime.datetime.now().strftime("%Y-%m-%d %H:%M:%S")
open_id = escape_string(open_id)
where_str = "(((target_open_id = '%s' OR target_open_id = '') AND send_or_receive = 0) OR (source_open_id = '%s') ) AND create_time >= '%s' AND status = 0" % (open_id, open_id, able_look_time)
if last_message_id is not None:
where_str += (" AND id < %d" % int(last_message_id))
return cls.get_one_page_of_table(cls.table_name, where_str, page, count_of_page, order_by="create_time desc")
开发者ID:Dida-1209,项目名称:lingnanhui,代码行数:25,代码来源:resource_helper_message_model.py
示例11: insert
def insert(db,table, v, step=1000, update=False,debug=False):
if not v: return
v = list(v)
keys = v[0].keys()
update_keys = ','.join(( '`%s`=values(`%s`)'%(e,e) for e in keys ))
sql_base ="insert into `%s`(`%s`) values ('%%s')"%(table,'`,`'.join(keys))
for i in xrange(step):
rs = v[i::step]
if not rs: continue
vv =([escape_string('%s'%e.get(k, 'None')) for k in keys] for e in rs)
vv =( "','".join(e) for e in vv)
vv = "'),('".join(vv)
vv = vv.replace("'None'", "NULL")
vv = sql_base%vv
if bool(update):
vv = '%s ON DUPLICATE KEY UPDATE %s' %(vv,update_keys)
try:
if debug:
log.msg( '>>>sql_insert:%s'%(vv,), log.DEBUG)
db.execute( vv )
except:
db.reset()
开发者ID:Big-Data,项目名称:ec2,代码行数:27,代码来源:mysql.py
示例12: insert_table
def insert_table(datas):
"""
Just MySQL Insert function
"""
sql = "INSERT INTO %s (name, link, categories, price, time_capt) \
values('%s', '%s', '%s', '%s', NOW())" % (SQL_TABLE,
escape_string(datas['item_name']),
escape_string(datas['item_link']),
escape_string(datas['item_category']),
escape_string(datas['item_price'])
)
# print sql
if cursor.execute(sql):
return True
else:
print "Something wrong"
开发者ID:asyafiq,项目名称:scrapy-bhinneka-crawler,代码行数:16,代码来源:spider.py
示例13: gen_solution
def gen_solution(cur, td, num, p_id):
# import pdb
# pdb.set_trace()
global testcase_id
global testcase_crawled
if num == 0:
column_name = 'java'
elif num == 1:
column_name = 'cpp'
elif num == 2:
column_name = 'csharp'
else:
column_name = 'VB'
cur.execute('select %s from problem where id = %d' % (column_name, p_id))
if cur.fetchall()[0][0] != None:
return
p = compile('"/stat\?c=problem_solution.*?"')
l = p.findall(td)
if len(l) == 1:
url = topcoder_site_url + unescape(l[0][1:-1])
try:
page = topcoder.get_page(url)
except Exception, e:
print url, e
return
p = compile('<TD CLASS="problemText" COLSPAN="8" VALIGN="middle" ALIGN="left">[\d\D]*?</TD>')
try:
code = escape_string(p.findall(page)[0])
except Exception, e:
print 'No code found:',url,e
return
开发者ID:Andimeo,项目名称:topcoder_crawler,代码行数:32,代码来源:gen_problem_solution.py
示例14: setBucket
def setBucket(bucket, userid):
'''creates a new empty bucket'''
MAX_BUCKETS_PER_USER = 100
conn = Connection()
#Validate the bucket
try:
_verifyBucket(conn, bucket, False, userid)
#Check if user has too many buckets
query = "SELECT bucket FROM bucket WHERE userid = %s"
result = conn.executeStatement(query, (int(userid)))
if len(result) >= MAX_BUCKETS_PER_USER:
raise BadRequestException.TooManyBucketsException()
#Write bucket to database and filesystem
query = "INSERT INTO bucket (bucket, userid, bucket_creation_time) VALUES (%s, %s, NOW())"
conn.executeStatement(query, (escape_string(str(bucket)), int(userid)))
path = Config.get('common','filesystem_path')
path += str(bucket)
os.mkdir(path)
except:
conn.cancelAndClose()
raise
else:
conn.close()
开发者ID:HISG,项目名称:utaka,代码行数:26,代码来源:Bucket.py
示例15: update_index_sql
def update_index_sql(self, entity):
"""Only generates SQL for changed index values"""
if not entity._has_changed:
# immediately return if this entity hasn't even changed.
return None
attrs, values = self._attrs_and_values(entity)
if not attrs:
return None
def values_have_changed(entity):
def _mapper(attr):
ent_value = getattr(entity, attr)
orig_value = entity._original_attrs.get(attr)
# True if changed, False if equal
return ent_value != orig_value
return _mapper
bools = map(values_have_changed(entity), attrs)
res = reduce(lambda x, y: x or y, bools)
if not res: return
updates = ['%s=%s' % (attr, value)
for attr, value in zip(attrs, values)]
sql = "UPDATE %s" % self.table
sql+= " SET %s" % ', '.join(updates)
sql+= " WHERE entity_id = '%s'" % escape_string(entity.id)
return sql
开发者ID:davidreynolds,项目名称:simplestore,代码行数:32,代码来源:index.py
示例16: updateMasterVariableTable
def updateMasterVariableTable(self):
"""
All the categorical variables get a lookup table;
we store the create code in the databse;
"""
for variable in self.variables:
# Make sure the variables know who their parent is
variable.fastAnchor = self.fastAnchor
# Update the referents for everything
variable.updateVariableDescriptionTable()
inCatalog = self.uniques()
if len(inCatalog) > 0 and self.tableName != "catalog":
# catalog has separate rules handled in CreateDatabase.py; so this builds
# the big rectangular table otherwise.
# It will fail if masterTableTable doesn't exister.
fileCommand = self.uniqueVariableFastSetup()
try:
parentTab = self.db.query(
"""
SELECT tablename FROM masterVariableTable
WHERE dbname='%s'"""
% self.fastAnchor
).fetchall()[0][0]
except:
if self.fastAnchor == "bookid":
parentTab = "fastcat"
else:
logging.error("Unable to find a table to join the anchor (%s) against" % self.fastAnchor)
raise
self.db.query('DELETE FROM masterTableTable WHERE masterTableTable.tablename="%s";' % self.fastName)
self.db.query(
"INSERT INTO masterTableTable VALUES ('%s','%s','%s')"
% (self.fastName, parentTab, escape_string(fileCommand))
)
开发者ID:jonathandfitzgerald,项目名称:BookwormDB,代码行数:35,代码来源:variableSet.py
示例17: _attrs_and_values
def _attrs_and_values(self, entity):
values = []
attrs = []
# map/reduce bool changes first, then if there are changes,
# continue stringifying values.
for attr in self.properties:
value = getattr(entity, attr)
# generally if a value is None it isn't required
# by the index, but this is a bad assumption...
if value is None:
continue
if isinstance(value, bool):
value = str(int(value))
if isinstance(value, datetime.datetime) or \
isinstance(value, datetime.date):
value = str(value)
if isinstance(value, basestring):
value = "'%s'" % escape_string(value)
values.append(value)
attrs.append(attr)
return (attrs, values)
开发者ID:davidreynolds,项目名称:simplestore,代码行数:28,代码来源:index.py
示例18: index_sql
def index_sql(self, entity):
"""
Indexes are strict about only indexing entities that have
all the properties required for indexing.
Example:
(Just an example, the actual indexer doesn't index dict objs)
user_id_index = Index(table="index_user_id",
properties=["user_id")
ent = Entity()
ent['id'] = 'foo'
ent['user_id'] = 'bar'
sql = user_id_index.index_sql(ent)
sql:
INSERT INTO index_user_id (entity_id, user_id) VALUES (
'foo', 'bar'
)
"""
attrs, values = self._attrs_and_values(entity)
if not attrs:
return None
values = ["'%s'" % escape_string(entity.id)] + values
sql = "INSERT INTO %s (entity_id, %s) VALUES (%s)" % (
self.table,
', '.join(attrs),
', '.join(['%s' % str(v) for v in values])
)
return sql
开发者ID:davidreynolds,项目名称:simplestore,代码行数:33,代码来源:index.py
示例19: search_cards
def search_cards(cls, own_open_id, industry, role, search_key, page, count_of_page):
"""
搜索标签
:param own_open_id: 自己的openid
:param industry: 搜索的行业
:param role: 搜索的职能
:param page: 页数
:param count_of_page: 每页记录数
:return: 数据列表(list),总记录数(int),页数(int)
"""
if type(page) != int or type(count_of_page) != int:
raise Exception('argv type error!')
# 处理异常数据
if page <= 0:
page = 1
# 计算偏移量
index = (page - 1) * count_of_page
sql = """
select * from %s
where status = 0 AND open_id != '%s' AND (redundancy_labels like '%%%s%%'
OR name like '%%%s%%' OR company like '%%%s%%')
AND industry like '%%%s%%' AND role like '%%%s%%'
order by update_time desc
limit %d, %d;
""" % (cls.table_name, escape_string(own_open_id), escape_string(search_key), escape_string(search_key), escape_string(search_key), escape_string(industry), escape_string(role), index, count_of_page)
objs = cls.get_db_lib().query_for_list(sql)
objs = map(cls.handle_data_use_in_json, objs)
sql = """
select count(*) as nums from %s
where status = 0 AND open_id != '%s' AND (redundancy_labels like '%%%s%%'
OR name like '%%%s%%' OR company like '%%%s%%')
AND industry like '%%%s%%' AND role like '%%%s%%'
order by update_time desc
limit 1;
""" % (cls.table_name, escape_string(own_open_id), escape_string(search_key), escape_string(search_key), escape_string(search_key), escape_string(industry), escape_string(role),)
obj = cls.get_db_lib().query_for_dict(sql)
max_page = obj['nums'] / count_of_page
if obj['nums'] % count_of_page:
max_page += 1
return objs, obj['nums'], max_page
开发者ID:Dida-1209,项目名称:lingnanhui,代码行数:47,代码来源:business_card.py
示例20: __build_wheres
def __build_wheres(self, conditions):
if len(conditions) == 0:
return ''
else:
i = 0
string = ' WHERE'
for field, condition in conditions.items():
if i > 0:
field, pre_op = self.__get_precondition_tuple(field)
else:
pre_op = ''
field, operator = self.__get_condition_tuple(field)
made_pre = False
made_pst = False
for letter_map, tbl_name in self.table_map.items():
tbl_name_len = len(tbl_name)
if not made_pre:
if field[:tbl_name_len] == tbl_name:
field = self.__protect_input(letter_map)+'.'+self.__protect_input(field[tbl_name_len:])
made_pre = True
elif field[:2] == letter_map+'.':
field = self.__protect_input(letter_map)+'.'+self.__protect_input(field[2:])
made_pre = True
if not made_pst:
if condition[:tbl_name_len] == tbl_name:
condition = self.__protect_input(letter_map)+'.'+self.__protect_input(condition[tbl_name_len:])
made_pst = True
elif condition[:2] == letter_map+'.':
condition = self.__protect_input(letter_map)+'.'+self.__protect_input(condition[2:])
made_pst = True
if made_pre and made_pst:
break
else:
if not made_pre:
if self.append_letter:
field = '`a`.'+self.__protect_input(field)
else:
field = self.__protect_input(field)
if not made_pst:
condition = '\''+escape_string(condition)+'\''
string = string+' '+pre_op+field
string = string+operator+condition
i = i + 1
return string
开发者ID:chazmead,项目名称:SteakCMS,代码行数:59,代码来源:mysql.py
注:本文中的MySQLdb.escape_string函数示例整理自Github/MSDocs等源码及文档管理平台,相关代码片段筛选自各路编程大神贡献的开源项目,源码版权归原作者所有,传播和使用请参考对应项目的License;未经允许,请勿转载。 |
客服电话
APP下载
官方微信
请发表评论