Examples with WallCheckResult com.alibaba.druid.wall.WallCheckResult used on opensource projects

Example 36 with WallCheckResult

use of com.alibaba.druid.wall.WallCheckResult in project druid by alibaba.

the class WallSelectLimitTest method testMySql.

public void testMySql() throws Exception {
    WallProvider provider = new MySqlWallProvider(config);
    WallCheckResult checkResult = provider.check(sql);
    String resultSql = checkResult.getSql();
    System.out.println(resultSql);
    assertEquals("SELECT *\n" + "FROM t\n" + "LIMIT 1000", resultSql);
}

Example 37 with WallCheckResult

use of com.alibaba.druid.wall.WallCheckResult in project druid by alibaba.

the class WallUpdateCheckTest method test_update_check_handler.

public void test_update_check_handler() throws Exception {
    {
        WallCheckResult result = wallProvider.check("update t_orders set status = 3 where id = 3 and status = 4");
        assertTrue(result.getViolations().size() == 0);
    }
    wallProvider.getConfig().setUpdateCheckHandler(new WallUpdateCheckHandler() {

        @Override
        public boolean check(String table, String column, Object setValue, List<Object> filterValues) {
            return false;
        }
    });
    {
        WallCheckResult result = wallProvider.check("update t_orders set status = 3 where id = 3 and status = 4");
        assertTrue(result.getViolations().size() > 0);
    }
    wallProvider.getConfig().setUpdateCheckHandler(new WallUpdateCheckHandler() {

        @Override
        public boolean check(String table, String column, Object setValue, List<Object> filterValues) {
            return true;
        }
    });
    {
        WallCheckResult result = wallProvider.check("update t_orders set status = 3 where id = 3 and status = 4");
        assertTrue(result.getViolations().size() == 0);
    }
    assertEquals(0, wallProvider.getWhiteListHitCount());
    assertEquals(0, wallProvider.getBlackListHitCount());
    wallProvider.getConfig().setUpdateCheckHandler(new WallUpdateCheckHandler() {

        @Override
        public boolean check(String table, String column, Object setValue, List<Object> filterValues) {
            // 增加对in语句的支持， status in (1, 2) 应该返回的filterValue为1和2
            assertTrue(filterValues.size() == 2);
            return true;
        }
    });
    {
        WallCheckResult result = wallProvider.check("update t_orders set status = 3 where id = 3 and status in (1, 2)");
        assertTrue(result.getViolations().size() == 0);
    }
    {
        WallCheckResult result = wallProvider.check("update t_orders set status = 3 where id = 3 and status = 3 and status in (3, 4)");
        assertTrue(result.getViolations().size() == 0);
    }
}

Example 38 with WallCheckResult

use of com.alibaba.druid.wall.WallCheckResult in project druid by alibaba.

the class MySqlWallTest152 method test_false.

public void test_false() throws Exception {
    WallProvider provider = new MySqlWallProvider();
    provider.getConfig().setSelectLimit(100);
    String sql = "SELECT version FROM schema_migrations";
    // assertTrue(
    // provider.checkValid(sql)
    // );
    WallCheckResult result = provider.check(sql);
    assertEquals(0, result.getViolations().size());
    String wsql = result.getStatementList().get(0).toString();
    assertEquals("SELECT version\n" + "FROM schema_migrations\n" + "LIMIT 100", wsql);
}