From 37f89110e73a8fc6d198119113e52c618c46abbc Mon Sep 17 00:00:00 2001
From: Darin Kelkhoff <darin.kelkhoff@gmail.com>
Date: Mon, 17 Jun 2024 11:00:17 -0500
Subject: [PATCH] Fix to escapeIdentifiers in doDeleteList

---
 .../qqq/backend/module/rdbms/actions/RDBMSDeleteAction.java   | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/qqq-backend-module-rdbms/src/main/java/com/kingsrook/qqq/backend/module/rdbms/actions/RDBMSDeleteAction.java b/qqq-backend-module-rdbms/src/main/java/com/kingsrook/qqq/backend/module/rdbms/actions/RDBMSDeleteAction.java
index baec4f0a..dd9cf209 100644
--- a/qqq-backend-module-rdbms/src/main/java/com/kingsrook/qqq/backend/module/rdbms/actions/RDBMSDeleteAction.java
+++ b/qqq-backend-module-rdbms/src/main/java/com/kingsrook/qqq/backend/module/rdbms/actions/RDBMSDeleteAction.java
@@ -235,9 +235,9 @@ public class RDBMSDeleteAction extends AbstractRDBMSAction implements DeleteInte
          String tableName      = getTableName(table);
          String primaryKeyName = getColumnName(table.getField(table.getPrimaryKeyField()));
          String sql = "DELETE FROM "
-            + tableName
+            + escapeIdentifier(tableName)
             + " WHERE "
-            + primaryKeyName
+            + escapeIdentifier(primaryKeyName)
             + " IN ("
             + primaryKeys.stream().map(x -> "?").collect(Collectors.joining(","))
             + ")";