WebStat: clean real_escape_string for queries
e8f35c010887
Actions

Authored by Jan Aage Lavik <jan.age.lavik@cern.ch> on May 11 2010, 18:01.

Description

WebStat: clean real_escape_string for queries

escape_string cleaned from webstat_engine.py, webstat.py bibsched.py and webbasket_migration_kit.py (fixes #44)

Uses of escape_string are now replaced with new function real_escape_string in dbquery. This function properly escapes an unescaped string with regards to charset.

Added function wash_table_column_name() to dbquery.py in miscutils. This function checks if the passed string is a valid table column name (alphanumeric).

Committed

Tibor Simko <tibor.simko@cern.ch>

Jun 1 2010, 11:04

Parents

Branches

Unknown

Tags

Unknown

Tibor Simko <tibor.simko@cern.ch> committed R3600:e8f35c010887: WebStat: clean real_escape_string for queries (authored by Jan Aage Lavik <jan.age.lavik@cern.ch>).Jun 1 2010, 11:04

				Path
	M			modules/bibsched/lib/bibsched.py
	M			modules/miscutil/lib/dbquery.py
	M			modules/miscutil/lib/dbquery_tests.py
	M			modules/webbasket/lib/webbasket_migration_kit.py
	M			modules/webstat/lib/webstat.py
	M			modules/webstat/lib/webstat_engine.py