Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
No ratings

How to escape backslash ('\') from the binding variable in Database Connector

timchengappa
Saviynt Employee
Saviynt Employee

‎03/28/2023 06:31 AM - edited ‎06/01/2023 01:44 PM

Use Case

The end User submits an ARS request to create a service account in the SQL Server application. During request submission and as per the customer naming convention the requestor enters the account name as "ABC\9kushw5"(Also applies when the account name is generated in a similar fashion from an accountNameRule and also applies if the use case is to create a regular user account with this naming convention)

Pre-requisites

  • A successful connection from Saviynt to the SQL Server application has to be established using a DB connector
  • Should be able to create a service account(or regular user account) without any special characters(specifically '\') in the account name

Applicable Version(s)

ALL

Solution

The SQL queries to perform this operation on the SQL Server application are as below. These queries can also be validated directly by ruining them in SQL Server Management Studio.
 
"CREATE LOGIN 'ABC\9kushw5' FROM WINDOWS WITH DEFAULT_DATABASE=master";
"CREATE USER 'ABC\9kushw5' FOR LOGIN 'ABC\9kushw5';
 
Screen Shot 2023-03-27 at 3.10.17 PM.png
Ideally, when the same query is transformed to createAccountJOSN within the Saviynt DB connector, it will look like the below...
 
createAccountJOSN
{
"CreateAccountQry": [
"CREATE LOGIN \"${accountName}\" FROM WINDOWS WITH DEFAULT_DATABASE=master",
"CREATE USER \"${accountName}\" FOR LOGIN \"${accountName}\""
]
}
 
Since the account name in this example has '\' in it, the operation will fail on the SQL Server application as the payload would not have transformed as expected. Saviynt logs will print the below error message

Sample log snip:
360 [quartzScheduler_Worker-6] ERROR provisoning.DBProvisioningService - Error occured in Excecuting Query\n"
360 [quartzScheduler_Worker-6] DEBUG provisoning.DBProvisioningService - Closing statements\n"
360 [quartzScheduler_Worker-6] DEBUG provisoning.DBProvisioningService - Closing stmt\n"
360 [quartzScheduler_Worker-6] DEBUG rest.RestUtilService - Got showLogs = true\n"
360 [quartzScheduler_Worker-6] ERROR provisoning.DBProvisioningService - Exception occurred in insert ABC\\9kushw5-Exception occured while Excecuting Query\n"
360 [quartzScheduler_Worker-6] DEBUG provisoning.DBProvisioningService - Status after inserts... false\n"
360 [quartzScheduler_Worker-6] ERROR provisoning.DBProvisioningService - Error while creating account -ABC\\9kushw5 stopping the Job\n"
361 [quartzScheduler_Worker-6] INFO provisoning.DBProvisioningService - End createAccountDB\n"
We will have to handle/escape the '\' special character 
 
As a resolution, you can escape/handle '\' in the CreateAccountJSON as below...
{
 "CreateAccountQry": [
  "CREATE LOGIN \"${accountName.replaceAll('\\\\', '\\\\\\\\')}\" FROM WINDOWS WITH DEFAULT_DATABASE=master",
  "CREATE USER \"${accountName.replaceAll('\\\\', '\\\\\\\\')}\" FOR LOGIN \"${accountName.replaceAll('\\\\', '\\\\\\\\')}\""
 ]
}
0 Kudos
Comments
yogesh
Regular Contributor III
Regular Contributor III
‎06/01/2023 01:13 AM

You should add "back slash" in the title so this post is returned in the search results if someone searches for it.

timchengappa
Saviynt Employee
Saviynt Employee
‎06/01/2023 01:45 PM

Thanks for your feedback @yogesh. The title has been updated.

Version history
Last update:
‎06/01/2023 01:44 PM
Updated by:
Saviynt Employee
Contributors
Copyright © 2024 Khoros, LLC