Larry Steinle

November 3, 2013

Using the Command Pattern to Store Versionable Data

In the article, Create a Persistent Data Structure, we learned the fundamental theories to provide versionable data management within a database. Today’s article moves out of the abstract theory and into a working code sample demonstrating how to create a versionable database using the command pattern.


October 19, 2013

Create a Persistent Data Structure

Occasionally I encounter a business need to track all changes allowing a user to view the data as it currently is stored or as it was stored. Having the ability to view the structure of a system from a previous point of reference is called a historical database or a persistent data structure. In this article we will review various strategies to create a persistent data structure. In the next article I will demonstrate how to create a persistent data structure.

September 21, 2013

Microsoft SQL Server Call Stack: Adding The Missing Oracle Feature

Filed under: Oracle,SQL Server — Larry Steinle @ 9:32 am
Tags: ,

A call stack can be an invaluable tool for any developer’s toolbox. The call stack shows from point-of-entry to the currently executing procedure what methods were called giving helpful hints as to where a problem in the logic hides. While the call stack is readily available to an Oracle object via the DBMS_Utility.Format_Call_Stack method, as of Microsoft SQL Server 2012 there is no such capability. In today’s article I will demonstrate how to make your own DBMS_Utility.Format_Call_Stack method in SQL Server.

May 9, 2011

Reporting Services Url Access

Filed under: SQL Server,Web — Larry Steinle @ 11:13 pm

Reporting Services provides software developers with a powerful, easy to use tool to construct reports for the web. Reports can be easily integrated inside applications using Reporting Services Url Access Parameters. In today’s post I’ll review the two url access parameter syntaxes explaining the differences between them.

February 20, 2011

Use Regular Expressions to Detect SQL Code Injection

Filed under: RegEx,Security,SQL Server,VS.Net,Web — Larry Steinle @ 12:26 am
Tags: , ,
To gain unauthorized access and possibly control of another companies information hackers employ a technique called SQL Code Injection. This simple technique involves entering a sql statement inside a text box and submitting the request. When the server processes the page it can be tricked into executing the injected code. The best strategy to block SQL Code Injection is to use a stored procedure. For the times when you simply must use inline sql statements we will learn how to detect and block SQL Code Injection with the help of a few, simple, regular expressions.


February 9, 2011

Use Regular Expressions to Clean SQL Statements

Filed under: RegEx,SQL Server — Larry Steinle @ 9:00 pm
Tags: ,
When writing programs that use inline SQL statements I prefer to format the sql statements for readability with solid comments in the sql statement. Sometimes the formatting or comments gets in the way during processing and must be removed. In this article I will demonstrate how to remove formatting and comments from a SQL Statement using Regular Expressions.

January 20, 2011

Introduction to Pivoting Data in SQL Server

Filed under: SQL Server — Larry Steinle @ 10:11 pm

A normalized database encourages the storage of information in a key/value format. That’s great for data lookup and storage operations but not always the best for usability. Pivoting data allows one or more rows of data to be organized by columns instead of by row.

Blog at