Created
April 4, 2019 18:27
-
-
Save blia/5e32b7454c03e9e859efc87694e6babb to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
const mysql = require("mysql"); | |
const { path, srcPath, host, user, password, database } = require("../config"); | |
/// | |
function exec(connection, query) { | |
return new Promise((res, rej) => { | |
connection.query(query, function(err, data) { | |
if (err) { | |
rej(err); | |
} | |
res(data); | |
}); | |
}); | |
} | |
function sql(strings, ...keys) { | |
return function(...v) { | |
var [connection, ...values] = v; | |
var dict = values[values.length - 1] || {}; | |
var result = [strings[0]]; | |
keys.forEach(function(key, i) { | |
var value = Number.isInteger(key) ? values[key] : dict[key]; | |
result.push(connection.escape(value), strings[i + 1]); | |
}); | |
console.log(result.join("")); | |
return exec(connection, result.join("")); | |
}; | |
} | |
/// | |
const connection = mysql.createConnection({ host, user, password, database }); | |
let findUser = sql` | |
select firstName, lastName | |
from user | |
where firstName=${"firstName"} and lastName=${"lastName"} | |
`; | |
let me = { | |
firstName: "Кирилл' -- ; DROP TABLE `blia`", | |
lastName: "Яковенко`" | |
}; | |
findUser(connection, me).then(r => console.log(r)).catch(e => console.log(e)); |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment