SQLTeam.com | Weblogs | Forums

Proposed standard for all data access: RFC

All external commands to databases are reduced to:

//more parameters can be added, up to the vendor.


sure sounds good to me

Sounds terrible. What if i need to find all items that meet given criteria? What if i want aggregate calculations of some metric?

I will never understand the thinking that you should invest in an RDBMS solution and then dumb it down to something barely better than flat files.

Those commands map stored procedures to an object (or JSON).

You can have aggregate calculations and parameters.

It prevents SQL injection.

It supports all RDBMS features. EDIT: it doesn't support views or returning multiple result sets.

We need data security and standards. Reducing all database commands to Load, Store, Delete & LoadList, allows a DBA to expose a stored procedure interface ONLY.

Eventually, those commands could be implemented as an interface to SQL Server, but in the meantime we increase security and accountability. No one can get through without detection.

//parameters share the same name and data type:
Person p = new Person();
p.ID = 1;

PersonList list = new PersonList();
list.LastName = "Smith";

How is that better than just exposing the required functionality you need, with exactly the parameters you need and appropriate function names, through stored procedures?

Load/Store/Delete maps that interface to objects.

One line of code.
Strongly types database to objects.