plausible/analytics
1
1
Fork 0
mirror of https://github.com/plausible/analytics.git synced 2024-11-24 04:32:57 +03:00
Code Issues Packages Projects Releases Wiki Activity

Escape single quote in CH query (#258)

Browse Source
This commit is contained in:
Uku Taht 2020-07-30 12:02:21 +03:00 committed by GitHub
parent 76cf9972fa
commit ea504217c0
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
lib/plausible/clickhouse.ex
View File

@ -1,6 +1,7 @@
defmodule Plausible.Clickhouse do
def all(query) do
{q, params} = Ecto.Adapters.SQL.to_sql(:all, Plausible.Repo, query)
params = Enum.map(params, &escape_quote/1)
q = String.replace(q, ~r/\$[0-9]+/, "?")
res = Clickhousex.query!(:clickhouse, q, params, log: {Plausible.Clickhouse, :log, []})
@ -91,8 +92,9 @@ defmodule Plausible.Clickhouse do
Clickhousex.query(:clickhouse, insert, args, log: {Plausible.Clickhouse, :log, []})
end
def escape_quote(nil), do: nil
def escape_quote(s), do: String.replace(s, "'", "''")
def escape_quote(l) when is_list(l), do: Enum.map(l, &escape_quote/1)
def escape_quote(s) when is_binary(s), do: String.replace(s, "'", "''")
def escape_quote(thing), do: thing
def log(query) do
require Logger