Using the Innovent Custom Script Libraries for query binding
In the last two examples, we modified a query at runtime to use a multiselect parameter. However, there are some issues with both approaches as we are modifying a SQL statement at runtime based on user input, which can lead to some security issues such as SQL injection attacks. This is not really a desirable condition, especially if these reports are going to be Internet facing. Fortunately, BIRT has the ability to allow for functionality to be extended, and to address this concern, we created a BIRT extension to do real time parameter binding to a SQL statement. In the following example, we are going to use the Innovent Solutions BIRT Functions Library in a SQL statement to bind a multiselect parameter.
1. Go to the BIRT Functions Library website located at http://code.google.com/p/birt-functions-lib/.
2. Make sure BIRT is closed before we perform this step. Download the
birt.functions.libJAR file that is appropriate for your...
