Skip to content

public / sequelize

Go to a project

不要怂,就是干,撸起袖子干!

Commit 2dec5888 by sdepold
Options

minor refactoring + tests for escaping

1 parent 439b0929
Inline Side-by-side
Showing with 59 additions and 68 deletions
spec/dao-factory.spec.js
...@@ -12,104 +12,95 @@ dialects.forEach(function(dialect) { ...@@ -12,104 +12,95 @@ dialects.forEach(function(dialect) {
before(function(done) { before(function(done) {
var self = this var self = this
this.sequelize = new Sequelize(config.database, config.username, config.password, { this.sequelize = new Sequelize(config.database, config.username, config.password, { logging: false })
logging: false this.sequelize
})
this.User = this.sequelize.define('User', {
username: Sequelize.STRING,
secretValue: Sequelize.STRING
})
self.sequelize
.getQueryInterface() .getQueryInterface()
.dropAllTables() .dropAllTables()
.success(function() { .success(function() {
self.sequelize.daoFactoryManager.daos = [] self.sequelize.daoFactoryManager.daos = []
self.User done()
.sync({ force: true })
.success(done)
.error(function(err) {
console.log(err)
})
}) })
.error(function(err) { console.log(err) }) .error(function(err) { console.log(err) })
}) })
describe('create with whitelist', function() { describe('create', function() {
before(function() { before(function(done) {
this.data = { this.User = this.sequelize.define('User', {
username: 'Peter', username: Sequelize.STRING,
secretValue: '42' secretValue: Sequelize.STRING,
} data: Sequelize.STRING
})
this.User
.sync({ force: true })
.success(done)
.error(function(err) { console.log(err) })
}) })
it('should only store the values passed in the witelist', function(done) { it('should only store the values passed in the witelist', function(done) {
var self = this; var self = this
, data = { username: 'Peter', secretValue: '42' }
this.User.create(this.data, ['username']).success(function(user) { this.User.create(data, ['username']).success(function(user) {
self.User.find(user.id).success(function(_user) { self.User.find(user.id).success(function(_user) {
expect(_user.username).toEqual(self.data.username); expect(_user.username).toEqual(data.username)
expect(_user.secretValue).not.toEqual(self.data.secretValue); expect(_user.secretValue).not.toEqual(data.secretValue)
expect(_user.secretValue).toEqual(null); expect(_user.secretValue).toEqual(null)
done(); done()
}) })
}) })
}) })
it('should store all values if no whitelist is specified', function(done) { it('should store all values if no whitelist is specified', function(done) {
var self = this; var self = this
, data = { username: 'Peter', secretValue: '42' }
this.User.create(this.data).success(function(user) { this.User.create(data).success(function(user) {
self.User.find(user.id).success(function(_user) { self.User.find(user.id).success(function(_user) {
expect(_user.username).toEqual(self.data.username); expect(_user.username).toEqual(data.username)
expect(_user.secretValue).toEqual(self.data.secretValue); expect(_user.secretValue).toEqual(data.secretValue)
done(); done()
}) })
}) })
}) })
describe('handle quoted data', function() { it('saves data with single quote', function(done) {
var quote = "single'quote"
it('saves data with single quote', function() { , self = this
setup({ data: {type: Sequelize.STRING} })
var quote = "single'quote" this.User.create({ data: quote }).success(function(user) {
Helpers.async(function(done) { expect(user.data).toEqual(quote, 'memory single quote')
User.create({ data: quote}).success(function(user) {
expect(user.data).toEqual(quote, 'memory single quote') self.User.find({where: { id: user.id }}).success(function(user) {
User.find({where: { id: user.id }}).success(function(user) { expect(user.data).toEqual(quote, 'SQL single quote')
expect(user.data).toEqual(quote, 'SQL single quote') done()
done()
})
})
}) })
}) })
})
it('saves data with double quote', function(done) {
var quote = 'double"quote'
, self = this
it('saves data with double quote', function() { this.User.create({ data: quote }).success(function(user) {
setup({ data: {type: Sequelize.STRING} }) expect(user.data).toEqual(quote, 'memory double quote')
var quote = 'double"quote'
Helpers.async(function(done) { self.User.find({where: { id: user.id }}).success(function(user) {
User.create({ data: quote}).success(function(user) { expect(user.data).toEqual(quote, 'SQL double quote')
expect(user.data).toEqual(quote, 'memory double quote') done()
User.find({where: { id: user.id }}).success(function(user) {
expect(user.data).toEqual(quote, 'SQL double quote')
done()
})
})
}) })
}) })
})
it('saves stringified JSON data', function(done) {
var json = JSON.stringify({ key: 'value' })
, self = this
it('saves stringified JSON data', function() { this.User.create({ data: json }).success(function(user) {
setup({ data: {type: Sequelize.STRING} }) expect(user.data).toEqual(json, 'memory data')
var json = JSON.stringify({ key: 'value' }) self.User.find({where: { id: user.id }}).success(function(user) {
Helpers.async(function(done) { expect(user.data).toEqual(json, 'SQL data')
User.create({ data: json}).success(function(user) { done()
expect(user.data).toEqual(json, 'memory data')
User.find({where: { id: user.id }}).success(function(user) {
expect(user.data).toEqual(json, 'SQL data')
done()
})
})
}) })
}) })
}) })
......
Markdown is supported
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!