sqlQuery - an SQL query statement . The statement can include a Union clause that combines the results of two queries. The statement can contain programmatically generated SQL (dynamic parameters) that indicate where optional arguments are to be used in the query. Use the question mark character (?) to specify a dynamic parameter.
fieldSeparator - the character string used as a separator between fields in the result. If an empty string is specified, the separator is a comma. The field separator is not displayed after the last field in the result.
rowSeparator - the character string used as a separator between records in the result. If an empty string is specified, the separator is a carriage return. The row separator is not displayed after the last row in the result.
arguments- one or more
expressions that are evaluated and used as values for the dynamic parameters in the query statement.
ExecuteSQL enables you to execute SQL statements containing dynamic parameters to safely query FileMaker Pro databases in order to avoid security vulnerabilities through injection attacks.
FileMaker Pro returns date and time data in Unicode/SQL format, not in the locale of the operating system or the file.
You want to add a field to the Employees table that displays the percentage of an employee’s salary relative to the total salaries in a department. Though you could use a calculation in FileMaker Pro to generate this value, you can use the ExecuteSQL function to specify this query using dynamic parameters, which prevents confidential salary information from unauthorized access.