Example 31 with MySqlWallProvider
use of com.alibaba.druid.wall.spi.MySqlWallProvider in project druid by alibaba.
the class MySqlWallTest134 method test_false.
public void test_false() throws Exception {
WallProvider provider = new MySqlWallProvider();
provider.getConfig().setSelectUnionCheck(true);
Assert.assertTrue(provider.checkValid("SELECT 1 FROM dual WHERE 1 = '1'''''''''''''UNION SELECT '2';"));
// end of comment --> false
Assert.assertFalse(provider.checkValid("SELECT 1 FROM t WHERE 1 = '1'''''''''''''UNION SELECT '2' --;"));
}
Also used :
WallProvider(com.alibaba.druid.wall.WallProvider)
MySqlWallProvider(com.alibaba.druid.wall.spi.MySqlWallProvider)
MySqlWallProvider(com.alibaba.druid.wall.spi.MySqlWallProvider)
Example 32 with MySqlWallProvider
use of com.alibaba.druid.wall.spi.MySqlWallProvider in project druid by alibaba.
the class MySqlWallPermitVariantTest method test_not_allow.
public void test_not_allow() throws Exception {
MySqlWallProvider provider = new MySqlWallProvider();
provider.getConfig().setVariantCheck(true);
Assert.assertFalse(provider.checkValid(sql));
}
Also used :
MySqlWallProvider(com.alibaba.druid.wall.spi.MySqlWallProvider)
Example 33 with MySqlWallProvider
use of com.alibaba.druid.wall.spi.MySqlWallProvider in project druid by alibaba.
the class MySqlWallTest_sqlmap method test_false.
public void test_false() throws Exception {
WallProvider provider = new MySqlWallProvider();
provider.getConfig().setSchemaCheck(true);
Assert.assertFalse(//
provider.checkValid("SELECT email, passwd, login_id, full_name" + " FROM members" + " 'W'=UPPER(MID(@@version_compile_os,1,1))"));
Assert.assertEquals(1, provider.getTableStats().size());
}
Also used :
WallProvider(com.alibaba.druid.wall.WallProvider)
MySqlWallProvider(com.alibaba.druid.wall.spi.MySqlWallProvider)
MySqlWallProvider(com.alibaba.druid.wall.spi.MySqlWallProvider)
Example 34 with MySqlWallProvider
use of com.alibaba.druid.wall.spi.MySqlWallProvider in project druid by alibaba.
the class MySqlWallTest93 method test_false.
public void test_false() throws Exception {
WallProvider provider = new MySqlWallProvider();
Assert.assertTrue(//
provider.checkValid("desc tablename"));
Assert.assertEquals(0, provider.getTableStats().size());
}
Also used :
WallProvider(com.alibaba.druid.wall.WallProvider)
MySqlWallProvider(com.alibaba.druid.wall.spi.MySqlWallProvider)
MySqlWallProvider(com.alibaba.druid.wall.spi.MySqlWallProvider)
Example 35 with MySqlWallProvider
use of com.alibaba.druid.wall.spi.MySqlWallProvider in project druid by alibaba.
the class MySqlWallTest95 method test_false.
public void test_false() throws Exception {
WallProvider provider = new MySqlWallProvider();
provider.getConfig().setCommentAllow(false);
Assert.assertFalse(//
provider.checkValid("select * from test /*!40101fff*/"));
}
Also used :
WallProvider(com.alibaba.druid.wall.WallProvider)
MySqlWallProvider(com.alibaba.druid.wall.spi.MySqlWallProvider)
MySqlWallProvider(com.alibaba.druid.wall.spi.MySqlWallProvider)
Aggregations
MySqlWallProvider (com.alibaba.druid.wall.spi.MySqlWallProvider)191
WallProvider (com.alibaba.druid.wall.WallProvider)166
WallCheckResult (com.alibaba.druid.wall.WallCheckResult)21
WallTableStat (com.alibaba.druid.wall.WallTableStat)17
SQLServerWallProvider (com.alibaba.druid.wall.spi.SQLServerWallProvider)12
OracleWallProvider (com.alibaba.druid.wall.spi.OracleWallProvider)10
PGWallProvider (com.alibaba.druid.wall.spi.PGWallProvider)10
Violation (com.alibaba.druid.wall.Violation)3
SQLStatement (com.alibaba.druid.sql.ast.SQLStatement)2
SchemaStatVisitor (com.alibaba.druid.sql.visitor.SchemaStatVisitor)2
WallConfig (com.alibaba.druid.wall.WallConfig)2
File (java.io.File)2
URL (java.net.URL)2
WallFunctionStat (com.alibaba.druid.wall.WallFunctionStat)1
WallProviderStatValue (com.alibaba.druid.wall.WallProviderStatValue)1
WallSqlStat (com.alibaba.druid.wall.WallSqlStat)1
Map (java.util.Map)1
Test (org.junit.Test)1
