Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Expose ASC/DESC, LIMIT, OFFSET, etc in the query API #10

Open
lngarrett opened this issue Jan 31, 2020 · 0 comments
Open

Expose ASC/DESC, LIMIT, OFFSET, etc in the query API #10

lngarrett opened this issue Jan 31, 2020 · 0 comments
Assignees
@tchordia

Comments

@lngarrett
Copy link

lngarrett commented Jan 31, 2020
edited
Loading

Is your feature request related to a problem? Please describe.
When sanitizing inputs it would be helpful to be able to pass all possible things that might be user input without exposing them to the SQL interpreter. I can use parameters in WHERE, but it's not so easy to do so for ASC/DESC, LIMIT, and OFFSET. My code would be simplified if I could pass these into the API as arguments and avoid building them into my query string directly.

Describe the solution you'd like
Arguments for ASC/DESC, LIMIT, and OFFSET.

Describe alternatives you've considered
Complex SQL statements to get around this, or sanitizing inputs with express-validator.
@tchordia tchordia self-assigned this Feb 20, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@tchordia tchordia

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@lngarrett @tchordia