What I'm trying to accomplish:
http://www.mysite.com/api?firstname=John&lastname=Smith
In the code, I need to dynamically generate a sql query based on the referenced URL variables (some or none could be specified... so it needs to be adaptive). To prevent SQL-injection, I need to structure the query in a way where the values of variables are appended to the '...interface{}' parameter of the db.Query() function (in the standard library).
This seems like an easy thing to do, but it isn't. If I could somehow convert a []interface{} that would satisfy the '...interface{}' (with the slice containing a pointer to the string holding the value) of the db.Query() call... that would work; however, I don't think that's possible. Any 3rd-party import or other advice on how to get what I'm needing going?
