{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 Juvenile、少年° 的问题《How to escape single-quotes in Query Filter》','https://www.manongdao.com/q-980890.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
Using QBO V3 API and I'm trying to query for Customers with an apostrophe in their names but I cannot figure out how to properly quote the name.
I have used the API Explorer and when I enter a query like this:
select * from customer where displayname like '%O\'Halloran'
Then the API Explorer works and says the request-uri is really:
https://qb.sbfinance.intuit.com/v3/company/1002341430/query?query=select * from customer where displayname like '%25O%5C'Halloran'
Notice a couple of things in my query:
- I have to use single-quotes around the value
- I have to escape the single-quote myself.
But then notice in the URI that API Explorer gives back to me: it keeps the single-quote wrapper string but then does NOT escape the single quote inside the value.
If I turn around and use the exact request URI that the API Explorer is using - it does NOT work. I get a query filter exception. So clearly what API Explorer is showing me is not the real query.
Since none of this is documented I'm left trying to reverse-engineer what the incantation is but I cannot determine it. I've looked at the PHP SDK but its not addressed there either, they assume the callers (like us) will know what to do themselves.
I had success with simply replacing the single quote char with the URL encoding : %27
As in: query=SELECT%20Id%2CDisplayName%2CSyncToken%20FROM%20Customer%20WHERE%20Id%3E%270%27%20MAXRESULTS%201000
FYI, I too noticed that the API Console and API Explorer were forgiving (almost to a fault!) and will accept 'wider syntax variety' than real calls.
Please use an escape character( \ ) for single quote(I think you're already doing it in your PHP code). There should be some libs(or functions) in PHP which do this url encoding.
You can refer this standard URL encoding guideline as well. http://www.w3schools.com/tags/ref_urlencode.asp
Devkit handles most of these encoding. https://developer.intuit.com/docs/0025_quickbooksapi/0055_devkits
Thanks
If you are using PHP or Ruby API to create the call then you should escape both \ character and ' character in the string you create
For example with the Quickbooks Ruby API
produces the correct query to search for Bill's Windsurg Shop
You need to escape it with
\, and then also URL encode the actual URL request you're sending.The actual URL you're hitting (for a customer query of
LIKE '%Keith O'Malley%'should be something like:With a full HTTP request looking like:
If you're not committed to using the Intuit DevKit that doesn't escape things properly, there's an open-source QuickBooks PHP DevKit available which handles these things correctly:
Here's an example of specifically what you're looking for:
Along with a pile of other working examples: