#44: WebStat: Clean escape_string from queries
----------------------+-----------------------------------------------------
Reporter: jlavik | Owner: jlavik
Type: defect | Status: closed
Priority: minor | Milestone:
Component: WebStat | Version:
Resolution: fixed | Keywords:
----------------------+-----------------------------------------------------
Changes (by jan.age.lavik@…):
* status: new => closed
* resolution: => fixed
Comment:
commit e8f35c010887cf2fb9c99628c27ab851598ece95
Author: Jan Aage Lavik <[email protected]>
Date: Tue May 11 18:01:42 2010 +0200
WebStat: clean real_escape_string for queries
* escape_string cleaned from webstat_engine.py, webstat.py
bibsched.py and webbasket_migration_kit.py (fixes #44)
* Uses of escape_string are now replaced with new function
real_escape_string in dbquery. This function properly
escapes an unescaped string with regards to charset.
* Added function wash_table_column_name() to dbquery.py
in miscutils. This function checks if the passed string is
a valid table column name (alphanumeric).
* Appropriate test cases for new functions added in
dbquery_tests.py.
--
Ticket URL: </ticket/44#comment:1>
Invenio <http://invenio-software.org>
