Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Santize key input parameters #12

Open
kand617 opened this issue May 8, 2018 · 1 comment
Open

Santize key input parameters #12

kand617 opened this issue May 8, 2018 · 1 comment
Labels
enhancement New feature or request

Comments

@kand617
Copy link
Member

kand617 commented May 8, 2018

Sanitization should be done to prevent SQL injection attacks.

This can be done via creating a constraint validator.
@kand617 kand617 added the enhancement New feature or request label May 8, 2018
@kand617 kand617 mentioned this issue May 8, 2018
Merged
@sudhirtumati
Copy link
Collaborator

As long as JPA parameterized / named queries are used, SQL injection is not possible. Not sure if there is a need to explicitly sanitize input as we are already using JPA

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@sudhirtumati @kand617