Possible to use .parameter() for VALUES value list?

conranc · December 12, 2019, 5:23am

We're looking at locking down our code to make sure we cover any injection possibilities.
Some of our queries use VALUES to specify a number of values at once.
Is it possible to use .parameter() to set a list of values?
The JavaDoc seems to indicate that you can only set a single value for a variable.

eg
SelectQuery query = "
SELECT ?s
WHERE {
VALUES (?o) { ?oValues }
?s ?p ?o .
}"

and supply ?oValues values using something like

query.parameter("oValues",List)

pavel · December 12, 2019, 10:12am

Hi Chris,

This is reasonable and we've heard it before, but it's indeed not supported currently (the problem isn't just the API but also that the query above is not syntactically correct SPARQL due to ?oValues).

We have an internal ticket #7925 for it but no firm target date yet.

Best,
Pavel

Topic		Replies	Views
Setting values for VALUES in SNARL Support	0	52	November 6, 2024
SPARQL Java integration Support	3	458	November 15, 2018
Binding sets of variables when calling sparql update stored query Support	5	1519	April 26, 2020
Unable to call a Store Query with a parameter expecting a list Support	2	404	July 16, 2020
Applying LIMIT values in sparql argument Support	6	374	October 26, 2023

Possible to use .parameter() for VALUES value list?

Related topics