SQL String Handler - updated 6-Feb-2003 - 27 Seconds Knowledge base

This is an updated version of this article. I have added support for comma-delimited lists (to support querystrings and form collections).

Const sqlDataTypeText = 0
Const sqlDataTypeNumber = 1
Const sqlDataTypeDate = 2
Const sqlDataTypeCommaDelimNumber = 3
Const sqlDataTypeCommaDelimText = 4

Function SQLStringFieldValue(fieldValue, dataType)
Dim m_sOut, m_sTmp
Dim m_iCnt, m_iTmp
Dim m_aTmp

	If Len(Trim(fieldValue)) > 0 Then
		Select Case dataType
			Case sqlDataTypeText
				m_sOut = "'" & Replace(Trim(fieldValue), "'", "''") & "'"

			Case sqlDataTypeNumber
				m_sOut = FixNumber(fieldValue)

			Case sqlDataTypeDate
				If IsDate(fieldValue) Then
					m_sOut = "#" & Trim(fieldValue) & "#"

				End If

			Case sqlDataTypeCommaDelimNumber
				m_aTmp = Split(fieldValue, ",")
				For m_iCnt = 0 To UBound(m_aTmp)
					m_iTmp = FixNumber(m_aTmp(m_iCnt))
					If m_iTmp > 0 Then
						If Len(m_sOut) > 0 Then
							m_sOut = m_sOut & ","

						End If

						m_sOut = m_sOut & m_iTmp

					End If

				Next

			Case sqlDataTypeCommaDelimText
				m_aTmp = Split(fieldValue, ",")
				For m_iCnt = 0 To UBound(m_aTmp)
					m_sTmp = Trim(m_aTmp(m_iCnt) & "")
					If Len(m_sTmp) > 0 Then
						If Len(m_sOut) > 0 Then
							m_sOut = m_sOut & ","

						End If

						m_sOut = m_sOut & "'" & Replace(m_sTmp, "'", "''") & "'"

					End If

				Next

		End Select

	End If


	If Len(m_sOut) = 0 Then
		m_sOut = "NULL"

	End If

	SQLStringFieldValue = m_sOut

End Function

SQL = "UPDATE TableName " & _
      "SET " & _
      "Age = " & SQLStringFieldValue(AGE, sqlDataTypeNumber) & " " & _
      "WHERE BirthDate >= " & SQLStringFieldValue(BIRTH_DATE, sqlDataTypeDate) & " "

Please note: this function needs to be modified for SQL Server. MS Access uses the # character around dates; SQL Server use the ' character.