Important alert: (current site time 7/15/2013 8:09:00 PM EDT)

They're finally here! Check out our new 7 Source Code CDs!
The brand newrevamped discussion board is here

Creating XML in a Stored Procedure

Submitted on:	10/9/2000 4:20:38 AM
By:	The_Mat_in_the_Hat
Level:	Intermediate
User Rating:	By 7 Users
Compatibility:	SQL Server 7.0
Views:	43950

(About the author)

Use a cursor in a stored procedure to create short XML string to output rather than recordsets. Also included is a simple VB application (with source) that generates the SQL

This article has accompanying files

Terms of Agreement:
By using this article, you agree to the following terms...

You may use this article in your own programs (and may compile it into a program and distribute it in compiled format for languages that allow it) freely and with no charge.
You MAY NOT redistribute this article (for example to a web site) without written permission from the original author. Failure to do so is a violation of copyright laws.
You may link to this article from another website, but ONLY if it is not wrapped in a frame.
You will abide by any additional copyright restrictions which the author may have placed in the article or article's description.

				Creating the Procedure


This procedure runs on an table called "tbl_Scripts" and returns data on ID (int), and Title (varchar) fields in 
an XML string.


This is the simple version, you can use an ADODB.Connection to run this procedure
CREATE PROCEDURE [sp_TestXML]
AS
DECLARE
	@XML 	varchar(8000),		-- output var
	@ID		varchar(18),		-- var to insert the ID field into
	@Title		varchar(62)		-- var to insert the Title field into
DECLARE Script_curs CURSOR FOR			-- We need a cursor to do the looping in
SELECT ('ID="' + CAST([ID] AS varchar(10)) + '"') AS ID, ('Title="' + [Title] + '"') AS Title
	FROM tbl_Scripts
	FOR READ ONLY
SET @XML = '<recordset>'
OPEN Script_curs
FETCH NEXT FROM Script_curs
	INTO @ID, @Title
	WHILE (@@FETCH_STATUS = 0 )
BEGIN
	SET @XML = @XML + '<record ' + @ID + ' ' + @Title + ' />'
	FETCH NEXT FROM Script_curs INTO @ID, @Title
END
SET @XML = (@XML + '</recordset>')
-- Output result as a 1 field record
SELECT XMLOUT = LTRIM(RTRIM(@XML))
CLOSE Script_curs
DEALLOCATE Script_curs

Then on your ASP Page:
<%
Option Explicit
Response.Buffer = True
Dim cn
Set cn = Server.createObject("ADODB.Connection")
cn.open Application("MyDSN")		' MyDSN is some valid connection string
Response.ContentType = "text/xml"	' For browsers that read mime types and if this is the only data on the page
Response.Write cn.execute("sp_TestXML").getString
cn.close
Set cn = Nothing
%>

This is pretty easy, you could make life more interesting by adding parameters, WHERE's etc.


The biggest problem with this example is that you only get 8000 characters (actually not that much!) to play with 
and you may find that you quickly run out of room.


The second problem is that if you use text data you may find illegal characters are present in the data. I tend 
to do a Server.HTMLEncode before I put data into 
servers but you could do a series of replaces on the text column ie
-- Title has illegal characters
SET @safeXML = REPLACE(Title, CHAR(38), '&amp;')
SET @safeXML = REPLACE(@safeXML, CHAR(96), ''')
SET @safeXML = REPLACE(@safeXML, CHAR(34), '&quot;')
SET @safeXML = REPLACE(@safeXML, CHAR(60), '&lt;')
SET @safeXML = REPLACE(@safeXML, CHAR(62), '&lt;')
-- Now @safeXML has no illegal characters

Since SQL is faster than both a compiled VB COM component and ASP if you need short XML strings this 
isn't a bad method and can be faster than the usual alternative of looping through RecordSets.


To make this reallt fly though we should avoid any recordset being created and just use an output parameter so
combining the two bits of SQL we have a new *safer* stored procedure
CREATE PROCEDURE [sp_TestXML2]
	@XMLOUT		varchar(8000)		OUTPUT		-- this time use an output parameter
AS
DECLARE
	@XML 		varchar(8000),	
	@ID		varchar(18),	
	@Title		varchar(62)	
DECLARE Script_curs CURSOR FOR
SELECT [ID], [Title] 
	FROM tbl_Scripts
	FOR READ ONLY
SET @XML = '<recordset>'
OPEN Script_curs
FETCH NEXT FROM Script_curs
	INTO @ID, @Title
	WHILE (@@FETCH_STATUS = 0 )
BEGIN
	-- Create safe text
	SET @Title = REPLACE(@Title, CHAR(38), '&amp;')
	SET @Title = REPLACE(@Title, CHAR(96), ''')
	SET @Title = REPLACE(@Title, CHAR(34), '"quot;')
	SET @Title = REPLACE(@Title, CHAR(60), '<lt;')
	SET @Title = REPLACE(@Title, CHAR(62), '>gt;')
	-- Create XML Node
	SET @XML = @XML + '<record ID="' + CAST(@ID AS varchar(5)) + + '" Title="' + @Title + '" />'
	FETCH NEXT FROM Script_curs INTO @ID, @Title
END
SET @XML = (@XML + '</recordset>')
-- output the xml as a single parameter
SELECT @XMLOUT = LTRIM(RTRIM(@XML))
CLOSE Script_curs
DEALLOCATE Script_curs

And new ASP code
<%
Option Explicit
Response.Buffer = True
Dim cmd
Set cmd = Server.createObject("ADODB.Command")
cmd.activeConnection = Application("MyDSN")
cmd.commandText = "sp_TestXML2"
cmd.commandType = adcmdStoredProc	' assuming you include the TypeLib for ADO
cmd.parameters.refresh
cmd.execute
Response.contentType = "text/xml"
Response.write cmd.parameters(1).value
cmd.ActiveConnection = Nothing		' Nice for connection pooling
Set cmd = Nothing
%>



And there you have it, all you need to create an XML string in a stored Procedure, of course this WILL all become
obselete when we can SELECT FOR ... XML AUTO in SQL2k


Something for the weekend?


I've attached a fairly undocumented VB application that helps you to generate these Stored Procedures.


Just type a valid connection string into the top left box, click Examine DB, select a table, 
the highlight the columns you want in the right hand drop down and click Generate SQL.


Thats the procedure done, then press Test SQL (requires IE5 or above) to view a sample XML file


Note


The EXE isnt guarenteed to work, I use it to generate the procedures then alter them by hand when i need 
more complex functionality, so if you have probs dont blame me!




"That SQL, that SQL, sometimes i wish it'd go to hell,


But you love that xml, even with it's funny smell..."



The Mat in the Hat

Download article

Note: Due to the size or complexity of this submission, the author has submitted it as a .zip file to shorten your download time. Afterdownloading it, you will need a program like Winzip to decompress it.Virus note:All files are scanned once-a-day by Planet Source Code for viruses, but new viruses come out every day, so no prevention program can catch 100% of them. For your own safety, please:

Re-scan downloaded files using your personal virus checker before using it.
NEVER, EVER run compiled files (.exe's, .ocx's, .dll's etc.)--only run source code.

If you don't have a virus scanner, you can get one at many places on the net including:McAfee.com

Terms of Agreement:
By using this article, you agree to the following terms...

You may use this article in your own programs (and may compile it into a program and distribute it in compiled format for languages that allow it) freely and with no charge.
You MAY NOT redistribute this article (for example to a web site) without written permission from the original author. Failure to do so is a violation of copyright laws.
You may link to this article from another website, but ONLY if it is not wrapped in a frame.
You will abide by any additional copyright restrictions which the author may have placed in the article or article's description.

Other 1 submission(s) by this author

Report Bad Submission

Use this form to tell us if this entry should be deleted (i.e contains no code, is a virus, etc.).
This submission should be removed because:

Your Vote

What do you think of this article (in the Intermediate category)?
(The article with your highest vote will win this month's coding contest!)
Excellent Good Average Below Average Poor (See voting log ...)

Other User Comments

2/15/2001 5:41:17 PM: killcrazy

too much MS from the XML king!!! he he he he !!! see ya at work tomorrow mate.
(If this comment was disrespectful, please report it.)

Add Your Feedback

Your feedback will be posted below and an email sent to the author. Please remember that the author was kind enough to share this with you, so any criticisms must be stated politely, or they will be deleted. (For feedback not related to this particular article, please click here instead.)

To post feedback, first please login.

Creating XML in a Stored Procedure

Newest postings for SQL.

sp_executesql : How to use ?

delete duplicates in a table, with one SQL statement

delete duplicates in a table

delete duplicates in a table, using FOR UPDATE NOWAIT

UTL_FILE file utility - Unix write checker & Unix file remover

one-month calendar

Remove Character & Replace Character

Remove Bad ASCII

Oracle R12 - MOAC

Oracle Form Personalization

Oracle Forms

find all objects with <string> in their name

find all columns with <string> in their name

time in English

Sql Tiki with Triggers

Oracle 11i - Procure 2 Pay

Oracle 11i - Multi Org

SQL*Plus "Pig" game

three-month "Past, Present, and Future" calendar

Employee Time of Arrival (ETA) prognosticator

virtual Magic 8-Ball

SQL*Plus "I'm thinking of a number between 1 and 10" game

six specialized Select statements

Age in years and months.

SQL*Plus - back to the future with CMD ("DOS")

Daily code email

This site on CD

Code/Articles

Top Code

Community

Jobs

Other

Goto…