Basics of SQLBasics of SQL8
  1. 1Introduction to SQL
  2. 2Installing SQL and Using SQL Tools
  3. 3SQL Syntax and Statements
  4. 4SQL Data Types
  5. 5CREATE TABLE Statement
  6. 6INSERT INTO Statement
  7. 7UPDATE Statement in SQL
  8. 8DELETE Statement in SQL
Querying DataQuerying Data10
  1. 1SELECT Statement in SQL
  2. 2SQL WHERE Clause
  3. 3ORDER BY Clause in SQL
  4. 4GROUP BY Clause in SQL
  5. 5HAVING Clause in SQL
  6. 6LIMIT / TOP Clause in SQL
  7. 7DISTINCT Keyword in SQL
  8. 8SQL Operators - AND, OR, NOT, IN, BETWEEN, LIKE
  9. 9SQL Aliases
  10. 10SQL CASE Statement
SQL JoinsSQL Joins6
  1. 1SQL INNER JOIN
  2. 2SQL LEFT JOIN
  3. 3SQL RIGHT JOIN
  4. 4SQL FULL OUTER JOIN
  5. 5SQL SELF JOIN
  6. 6SQL CROSS JOIN
Intermediate SQLIntermediate SQL6
  1. 1SQL Subqueries
  2. 2SQL Views
  3. 3SQL Indexes
  4. 4SQL Constraints
  5. 5SQL Functions – String, Numeric, Date & Aggregate
  6. 6SQL NULL Handling – IS NULL, COALESCE, IFNULL
Advanced SQLAdvanced SQL7
  1. 1SQL Stored Procedures
  2. 2SQL User Defined Functions (UDF)
  3. 3SQL Triggers
  4. 4SQL Transactions – COMMIT, ROLLBACK, SAVEPOINT
  5. 5SQL Cursors
  6. 6SQL Error Handling – BEGIN...HANDLER, SIGNAL
  7. 7Dynamic SQL
Database DesignDatabase Design5
  1. 1Database Normalization – 1NF, 2NF, 3NF, BCNF
  2. 2SQL Denormalization
  3. 3ER Diagrams and Schema Design
  4. 4Primary Key vs Unique Key
  5. 5Foreign Keys and Relationships
OptimizationOptimization3
  1. 1SQL Performance Tuning
  2. 2SQL Execution Plans
  3. 3Index Optimization in SQL
SecuritySecurity2
  1. 1SQL Injection and Security
  2. 2User Management and Permissions in SQL
Advanced QueryingAdvanced Querying4
  1. 1Common Table Expressions in SQL
  2. 2Window Functions in SQL – RANK, ROW_NUMBER, LEAD, LAG
  3. 3SQL Pivot and Unpivot
  4. 4Recursive Queries in SQL
IntegrationsIntegrations4
  1. 1SQL with Python
  2. 2SQL with Java
  3. 3SQL with Excel
  4. 4Connecting to SQL Databases via JDBC/ODBC

Dynamic SQL
Building and Executing SQL on the Fly

Introduction

What if your SQL query depends on user input or varies based on certain conditions? You can't hardcode every case. That’s where Dynamic SQL comes in. It lets you construct and execute SQL statements at runtime — adding flexibility, interactivity, and control.

What is Dynamic SQL?

Dynamic SQL is a SQL statement created and executed at runtime rather than being hardcoded into the procedure. You use it when the structure of your query is not fixed in advance — for example, when filtering by variable columns, table names, or sorting criteria.

MySQL Syntax Overview

  • PREPARE stmt_name FROM @sql
  • EXECUTE stmt_name
  • DEALLOCATE PREPARE stmt_name

Sample Table – students

CREATE TABLE students (
  roll_no INT,
  name VARCHAR(50),
  marks INT,
  city VARCHAR(30)
);

INSERT INTO students VALUES
(1, 'Aarav Sharma', 85, 'Delhi'),
(2, 'Diya Iyer', 92, 'Chennai'),
(3, 'Sneha Patil', 78, 'Pune'),
(4, 'Mehul Agarwal', 90, 'Delhi');

1. Basic Dynamic SQL – Select by City

SET @city_name = 'Delhi';
SET @sql = CONCAT('SELECT name, marks FROM students WHERE city = "', @city_name, '"');

PREPARE stmt FROM @sql;
EXECUTE stmt;
DEALLOCATE PREPARE stmt;

name           | marks
----------------+-------
Aarav Sharma   | 85
Mehul Agarwal  | 90

2. Sorting Dynamically

SET @sort_column = 'marks';
SET @sql = CONCAT('SELECT name, marks FROM students ORDER BY ', @sort_column, ' DESC');

PREPARE stmt FROM @sql;
EXECUTE stmt;
DEALLOCATE PREPARE stmt;

name           | marks
----------------+-------
Diya Iyer      | 92
Mehul Agarwal  | 90
Aarav Sharma   | 85
Sneha Patil    | 78

3. Inside a Stored Procedure

DELIMITER $$

CREATE PROCEDURE get_students_by_city(IN p_city VARCHAR(30))
BEGIN
  SET @sql = CONCAT('SELECT name, marks FROM students WHERE city = "', p_city, '"');
  PREPARE stmt FROM @sql;
  EXECUTE stmt;
  DEALLOCATE PREPARE stmt;
END$$

DELIMITER ;

Call it:

CALL get_students_by_city('Pune');

When to Use Dynamic SQL

  • When table, column, or filter values are determined at runtime
  • When building advanced search or reporting systems
  • When writing reusable admin tools or dashboards

Best Practices

  • Always sanitize input to avoid SQL injection risks
  • Use prepared statements instead of directly executing dynamic strings
  • Use stored procedures to encapsulate dynamic SQL safely

Real-World School Use Cases

  • Generate student reports by city or class dynamically
  • Create dashboards where the admin selects filter criteria
  • Allow dynamic sorting and pagination of student data

Summary

Dynamic SQL adds the power of flexibility to your SQL toolbox. Instead of writing rigid queries, you can build smart, context-aware scripts that adapt to input or conditions. In a school database, this means more intelligent reports, user-driven filters, and robust admin utilities.

What’s Next?

Next up: SQL Optimization Techniques — master the art of making your queries fast, efficient, and scalable.

QUIZ

Question 1:What is the core reason for using Dynamic SQL in database applications?

Question 2:Dynamic SQL is always safer than static SQL in preventing SQL injection.

Question 3:Which of the following are valid use-cases for Dynamic SQL?

Question 4:How do you execute a dynamic SQL string in SQL Server?

Question 5:In PL/SQL, the EXECUTE IMMEDIATE statement can be used for Dynamic SQL.

Question 6:Which best practices should be followed when writing Dynamic SQL?