The third step is to build and execute an SQL statement, as shown in the following figure. How this is done is likely to vary tremendously. The application might prompt the user to enter an SQL statement, build an SQL statement based on user input, or use a hard-coded SQL statement. For more information, see “Constructing SQL Statements” in Chapter 8, “SQL Statements.”
If the SQL statement contains parameters, the application binds them to application variables by calling SQLBindParameter for each parameter. For more information, see “Statement Parameters” in Chapter 9, “Executing Statements.”
After the SQL statement is built and any parameters are bound, the statement is executed with SQLExecDirect. If the statement will be executed multiple times, it can be prepared with SQLPrepare and executed with SQLExecute. For more information, see “Executing a Statement” in Chapter 9, “Executing Statements.”
The application might also forgo executing an SQL statement altogether and instead call a function to return a result set containing catalog information, such as the available columns or tables. For more information, see “Uses of Catalog Data” in Chapter 7, “Catalog Functions.”
What the application does next depends on the type of SQL statement executed.