b.santos/cursopython2023
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Lendo valores com WHERE (mais uma vez, explico cuidados com SQL Injection)

Browse Source
This commit is contained in:
Luiz Otávio
2023-04-15 15:52:39 -03:00
parent 20f85e42c4
commit c0c3e77853
1 changed files with 8 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
aula206/main.py
View File

@@ -97,6 +97,7 @@ with connection:
data4 = ( data4 = (
("Siri", 22, ), ("Siri", 22, ),
("Helena", 15, ), ("Helena", 15, ),
("Luiz", 18, ),
) )
result = cursor.executemany(sql, data4) # type: ignore result = cursor.executemany(sql, data4) # type: ignore
# print(sql) # print(sql)
@@ -106,10 +107,16 @@ with connection:
# Lendo os valores com SELECT # Lendo os valores com SELECT
with connection.cursor() as cursor: with connection.cursor() as cursor:
menor_id = int(input('Digite o menor id: '))
maior_id = int(input('Digite o maior id: '))
sql = ( sql = (
f'SELECT * FROM {TABLE_NAME} ' f'SELECT * FROM {TABLE_NAME} '
'WHERE id BETWEEN %s AND %s '
) )
cursor.execute(sql) # type: ignore
cursor.execute(sql, (menor_id, maior_id)) # type: ignore
print(cursor.mogrify(sql, (menor_id, maior_id))) # type: ignore
data5 = cursor.fetchall() # type: ignore data5 = cursor.fetchall() # type: ignore
for row in data5: for row in data5: