SQL standard to escape column names?

Question

Is there a SQL standard to escape a column name? If not what works for MySQL and SQLite? does it also work for SQL Server?

score 99 · Answer 1 · edited Dec 20 '20 at 15:43

Quotation Mark `"`

The SQL:1999 standard specifies that double quote (") (QUOTATION MARK) is used to delimit identifiers.

<delimited identifier> ::= <double quote> <delimited identifier body> <double quote>

Oracle, PostgreSQL, MySQL, MSSQL and SQlite all support " as the identifier delimiter.

They don't all use " as the 'default'. For example, you have to be running MySQL in ANSI mode and SQL Server only supports it when QUOTED_IDENTIFIER is ON.

score 84 · Answer 2 · edited Jun 25 '15 at 12:30

84

According to SQLite,

'foo' is an SQL string
"foo" is an SQL identifier (column/table/etc)
[foo] is an identifier in MS SQL
`foo` is an identifier in MySQL

For qualified names, the syntax is: "t"."foo" or [t].[foo], etc.

MySQL supports the standard "foo" when the ANSI_QUOTES option is enabled.

edited Jun 25 '15 at 12:30

mb21

31,690
8
105
126

answered May 25 '10 at 01:51

tc.

33,206
5
76
96

3

Note that SQLite allows `'foo'` to be interpreted as an identifier if the context wouldn't allow a string, and `"foo"` to be interpreted as a string if the context wouldn't allow an identifier, though there is a note that this behaviour may be removed in future versions. – thomasrutter Sep 02 '16 at 05:49
So, how do you do "t".* ? – Loenix Nov 03 '16 at 14:42
3

@thomasrutter Yeah I totally got bitten by this behavior… Tried to use `WHERE "nonexistent_column" = 0` and sqlite just happily executed it pretending that my `"nonexistent_column"` was a string. Fully qualifying the name as `"my_table"."nonexistent_column"` forces sqlite into behaving more strictly. – Rufflewind Jan 18 '17 at 03:08
`foo`, `"foo"` and `'foo'` did not work for me with MySQL. It required backticks. And to make matters worse, MySQL was providing [useless error messages](https://dba.stackexchange.com/q/229991/141074). – jww Feb 17 '19 at 19:34

score 22 · Answer 3 · edited Feb 17 '19 at 19:55

22

For MySQL, use back ticks `.

For instance:

SELECT `column`, `column2` FROM `table`

edited Feb 17 '19 at 19:55

jww

90,984
81
374
818

answered May 25 '10 at 01:38

Kerry Jones

21,600
11
59
88

score 21 · Answer 4 · answered May 25 '10 at 01:40

21

For MS SQL use [ and ]

SELECT [COLUMN], [COLUMN 2] FROM [TABLE]

answered May 25 '10 at 01:40

BoltBait

11,262
9
58
86

2

you can have spaces in column names with ms sql!?! – May 25 '10 at 01:41
3

you can! I wouldn't, though. – JMP May 25 '10 at 01:43
1

Yes, you can have spaces or reserved words as entity names in MSSQL. You just need to [ ] them. – BoltBait May 25 '10 at 01:43
7

BTW, if you're using [ and ] in MS SQL Server and you want to use the ] character in the name itself (for whatever reason) then you need to escape it with an other ] character (ie use ]] instead of ]). – Daniel James Bryars Jul 16 '11 at 10:00

orangecaterpillar · Answer 5 · 2021-05-23T23:21:42.637

4

Putting some answers together:

MS SQL (a.k.a. T-SQL), Microsoft Access SQL, DBASE/DBF: SELECT [COLUMN], [COLUMN2] FROM [TABLE]

MySQL: SELECT `COLUMN`, `COLUMN2` FROM `TABLE`

SQLite, Oracle, Postgresql: SELECT "COLUMN", "COLUMN2" FROM "TABLE"

Please add/edit!

edited May 23 '21 at 23:21

answered May 29 '20 at 01:06

orangecaterpillar

579
7
12

score 2 · Answer 6 · answered Feb 11 '16 at 16:18

2

For DBASE/DBF use [ and ]

SELECT [DATE], [TIME], [ANY_OTHER_TO_BE_ESCAPED_COLUMN] FROM [TABLE]

answered Feb 11 '16 at 16:18

Serhii Matrunchyk

8,473
4
34
45

SQL standard to escape column names?

6 Answers6

Quotation Mark `"`

Linked

Related

SQL standard to escape column names?

6 Answers6

Quotation Mark "

Linked

Related

Quotation Mark `"`