camel-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Claus Ibsen (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (CAMEL-6157) Parametrized queries in JDBC component
Date Wed, 29 May 2013 08:53:20 GMT

    [ https://issues.apache.org/jira/browse/CAMEL-6157?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13669102#comment-13669102
] 

Claus Ibsen commented on CAMEL-6157:
------------------------------------

Yeah good idea with the copy of DefaultPreparedStatementStrategy. The code seems fine. Maybe
polish it a bit.

                
> Parametrized queries in JDBC component
> --------------------------------------
>
>                 Key: CAMEL-6157
>                 URL: https://issues.apache.org/jira/browse/CAMEL-6157
>             Project: Camel
>          Issue Type: Improvement
>          Components: camel-jdbc
>            Reporter: Henryk Konsek
>             Fix For: Future
>
>         Attachments: DefaultSqlPrepareStatementStrategy.java, JdbcParameterizedQueryTest.java,
JdbcParameterizedQueryTest.java, JdbcPrepareStatementStrategy.java, JdbcProducer.java
>
>
> Juan pointed that currently it is difficult to create SQL-injection safe query with JDBC
component. We could provide option to send query parameters via message header.
> {code}
> from("direct:sql").to("jdbc:testDB");
> ...
> producerTemplate.sendBodyAndHeader("direct:sql", "JDBC_PARAMETERS", "fooValue", "insert
into foo values (?)");
> {code}
> [1] http://camel.465427.n5.nabble.com/Dinamyc-SQL-with-arguments-tp5729003.html

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

Mime
View raw message