Examples of com.alibaba.druid.wall.spi.MySqlWallProvider.checkValid()

Class com.alibaba.druid.wall.spi.MySqlWallProvider

Examples of com.alibaba.druid.wall.spi.MySqlWallProvider.checkValid()

com.alibaba.druid.wall.spi.MySqlWallProvider.checkValid()

public class MySqlWallTest_if extends TestCase {


    public void test_false() throws Exception {
        WallProvider provider = new MySqlWallProvider();
        
        Assert.assertFalse(provider.checkValid(//
        "SELECT * FROM T WHERE FID = ? OR IF(1>2,2,3) = 3"));


        Assert.assertEquals(1, provider.getTableStats().size());
    }

View Full Code Here

public class MySqlWallTest44 extends TestCase {


    public void test_false() throws Exception {
        WallProvider provider = new MySqlWallProvider();


        Assert.assertFalse(provider.checkValid(//
        "SELECT * FROM pw_pushdata WHERE invokepieceid= '49'  AND ifverify=0 AND starttime<= '1365331510'  ORDER BY vieworder DESC,starttime DESC  LIMIT 0"));


        Assert.assertEquals(1, provider.getTableStats().size());
    }
}

View Full Code Here

public class MySqlWallTest84 extends TestCase {


    public void test_false() throws Exception {
        WallProvider provider = new MySqlWallProvider();
        
        Assert.assertTrue(provider.checkValid(//
        "CREATE INDEX part_of_name ON customer (name(10));"));


        Assert.assertEquals(1, provider.getTableStats().size());
    }

View Full Code Here

        WallProvider provider = new MySqlWallProvider();
        provider.getConfig().setCommentAllow(false);


        String sql = "SELECT name, '******' password, createTime from user where name like 'admin%' AND (SELECT 6384 FROM(SELECT COUNT(*),CONCAT(0x3a64686c3a,(SELECT (CASE WHEN (3252 = 3252) THEN 1 ELSE 0 END)),0x3a766f723a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a) AND '%'=''";


        Assert.assertFalse(provider.checkValid(sql));
    }


}

View Full Code Here

public class MySqlWallTest76 extends TestCase {


    public void test_false() throws Exception {
        WallProvider provider = new MySqlWallProvider();
        
        Assert.assertFalse(provider.checkValid(//
        "SELECT * FROM T WHERE FID = ? OR GREATEST(2,0) = 2"));


        Assert.assertEquals(1, provider.getTableStats().size());
    }

View Full Code Here

        WallProvider provider = new MySqlWallProvider();
        provider.getConfig().setCommentAllow(false);


        String sql = "select * from t where id = ? or substr(bin(97>>5), -1, 1)";


        Assert.assertFalse(provider.checkValid(sql));
    }


}

View Full Code Here


    public void test_true() throws Exception {
        WallProvider provider = new MySqlWallProvider();
        provider.getConfig().setCommentAllow(true);


        Assert.assertTrue(provider.checkValid(//
        "select * from T--"));


        Assert.assertEquals(1, provider.getTableStats().size());
    }

View Full Code Here


    public void test_false() throws Exception {
        WallProvider provider = new MySqlWallProvider();
        provider.getConfig().setCommentAllow(true);
        
        Assert.assertFalse(provider.checkValid("select * from t where id = 1 /*!30000union all select 2*/"));
    }


}

View Full Code Here

public class MySqlWallTest_ifnull_2 extends TestCase {


    public void test_false() throws Exception {
        WallProvider provider = new MySqlWallProvider();
        
        Assert.assertFalse(provider.checkValid(//
        "SELECT * FROM T WHERE FID = ? OR IFNULL(CAST(CURRENT_USER() AS CHAR))"));


        Assert.assertEquals(1, provider.getTableStats().size());
    }

View Full Code Here


    public void testMySql() throws Exception {
        WallProvider provider = new MySqlWallProvider();
        provider.getConfig().setDropTableAllow(true);


        Assert.assertTrue(provider.checkValid(sql));
        WallTableStat tableStat = provider.getTableStat("t");
        Assert.assertEquals(1, tableStat.getDropCount());
    }


    public void testOracle() throws Exception {

View Full Code Here

0 1 2 3 4 5 6 7 8 9

TOP

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.