DataLink / JDBC / EXEC

Generic selectors
Exact matches only
Search title only
Search in content
Search in all posts
Search in pages
Answers
Questions
673 viewsDataLinkexec jdbc parsing sql
0

Dear Support,
With Quantrix Modeler 2019 Release 1.0 32 bits and JDBC 6.0 or JDBC 7.2 (com.microsoft.sqlserver.jdbc.SQLServerDriver we have no more the possibility to update our Model. The datalink was set in SQL Export with a EXEC Stored Procedure.
The SQL Statement that was working before :
exec sp_PVIN_CA_By_Week_Or_Month
@in_sub_code           = ‘prov’,
@in_file_type           = ‘Mois’,
@in_extract_type       = 1;
The given error we’ve get : “There was an error fetching the data to import” with detail “There was an error parsing the SQL query.”
Now we have try to change the input parameter without the @ :
exec sp_PVIN_CA_By_Week_Or_Month ‘prov’, null, null, ‘Mois’, null, null ;
The new error is : “There was an error fetching the data to import” with detail “Only single select statement is allowed in query.”
We have not found the issue of this problem and seems to be link with the interpretation of the stored procedure (that hasn’t been change)
Is it link with the JDBC ? How could we debug it ? Log ?!
Best regards

Answered question
1

Hi – with Quantrix 19.1.0 we introduced SQL validation to enhance our security of the application. We want to prevent a user from executing malicious SQL that could damage a DB etc. However, we soon realized after the release that our validation library that we used was too restrictive and prevent some legitimate use cases like the one your describing with stored procedures. Therefore, in our upcoming 19.1.1 patch release, we plan to make stored procedures allowable and also provide an override switch for other approved SQL queries. I apologize for the difficulties and I expect the 19.1.1 patch to be released late-April.
-Mike

Answered question
You are viewing 1 out of 4 answers, click here to view all answers.

Latest Questions