Parameterized Statements
The following code example shows how to bind parameters to create parameterized statements.
Single-Use Statements
The Query and Exec functions both accept additional parameters for binding query parameters to values.
rows, _ := db.Query("SELECT RespondentId, ChoiceId FROM MySurvey_Responses WHERE ChoiceText = ?", "blue") defer rows.Close() for rows.Next() { var ( RespondentId string ChoiceId string ) rows.Scan(&RespondentId, &ChoiceId) fmt.Printf("RespondentId = %s, ChoiceId = %s\n", RespondentId, ChoiceId) }
Reusable Statements
The Prepare function creates prepared Stmt objects, which can be re-used across multiple Query and Exec calls.
stmt, _ := db.Prepare("SELECT RespondentId, ChoiceId FROM MySurvey_Responses WHERE ChoiceText = ?") defer stmt.Close() rows, _ := stmt.Query("blue 1") defer rows.Close() for rows.Next() { var ( RespondentId string ChoiceId string ) rows1.Scan(&RespondentId, &ChoiceId) fmt.Printf("RespondentId = %s, ChoiceId = %s\n", RespondentId, ChoiceId) } rows, _ = stmt.Query("blue 2") defer rows.Close() for rows.Next() { var ( RespondentId string ChoiceId string ) rows2.Scan(&RespondentId, &ChoiceId) fmt.Printf("RespondentId = %s, ChoiceId = %s\n", RespondentId, ChoiceId) }