Skip to content
Toggle navigation
Projects
Groups
Snippets
Help
public
/
sequelize
This project
Loading...
Sign in
Toggle navigation
Go to a project
Project
Repository
Issues
0
Merge Requests
0
Pipelines
Wiki
Snippets
Settings
Activity
Graph
Charts
Create a new issue
Jobs
Commits
Issue Boards
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Charts
不要怂,就是干,撸起袖子干!
Commit ab17c0fb
authored
Jan 15, 2015
by
Mick Hansen
Browse files
Options
Browse Files
Download
Plain Diff
Merge branch 'seegno-bugfix/whitelist-order-keywords'
2 parents
3f74fec0
39c512b1
Show whitespace changes
Inline
Side-by-side
Showing
2 changed files
with
56 additions
and
0 deletions
lib/dialects/abstract/query-generator.js
test/model/findAll/order.test.js
lib/dialects/abstract/query-generator.js
View file @
ab17c0f
...
@@ -1263,8 +1263,24 @@ module.exports = (function() {
...
@@ -1263,8 +1263,24 @@ module.exports = (function() {
var
mainQueryOrder
=
[];
var
mainQueryOrder
=
[];
var
subQueryOrder
=
[];
var
subQueryOrder
=
[];
var
validateOrder
=
function
(
order
)
{
if
(
!
_
.
contains
([
'ASC'
,
'DESC'
],
order
.
toUpperCase
()))
{
throw
new
Error
(
util
.
format
(
'Order must be \'ASC\' or \'DESC\', \'%s\' given'
,
order
));
}
};
if
(
Array
.
isArray
(
options
.
order
))
{
if
(
Array
.
isArray
(
options
.
order
))
{
options
.
order
.
forEach
(
function
(
t
)
{
options
.
order
.
forEach
(
function
(
t
)
{
if
(
Array
.
isArray
(
t
)
&&
_
.
size
(
t
)
>
1
)
{
if
(
t
[
0
]
instanceof
Model
||
t
[
0
].
model
instanceof
Model
)
{
if
(
typeof
t
[
t
.
length
-
2
]
===
"string"
)
{
validateOrder
(
_
.
last
(
t
));
}
}
else
{
validateOrder
(
_
.
last
(
t
));
}
}
if
(
subQuery
&&
(
Array
.
isArray
(
t
)
&&
!
(
t
[
0
]
instanceof
Model
)
&&
!
(
t
[
0
].
model
instanceof
Model
)))
{
if
(
subQuery
&&
(
Array
.
isArray
(
t
)
&&
!
(
t
[
0
]
instanceof
Model
)
&&
!
(
t
[
0
].
model
instanceof
Model
)))
{
subQueryOrder
.
push
(
this
.
quote
(
t
,
model
));
subQueryOrder
.
push
(
this
.
quote
(
t
,
model
));
}
}
...
...
test/model/findAll/order.test.js
View file @
ab17c0f
...
@@ -69,6 +69,45 @@ describe(Support.getTestDialectTeaser('Model'), function() {
...
@@ -69,6 +69,45 @@ describe(Support.getTestDialectTeaser('Model'), function() {
});
});
}
}
});
});
describe
.
only
(
'injections'
,
function
()
{
beforeEach
(
function
()
{
this
.
User
=
this
.
sequelize
.
define
(
'user'
,
{
});
this
.
Group
=
this
.
sequelize
.
define
(
'group'
,
{
});
this
.
User
.
belongsTo
(
this
.
Group
);
return
this
.
sequelize
.
sync
({
force
:
true
});
});
it
(
'should throw when 2nd order argument is not ASC or DESC'
,
function
()
{
return
expect
(
this
.
User
.
findAll
({
order
:
[
[
'id'
,
';DELETE YOLO INJECTIONS'
]
]
})).
to
.
eventually
.
be
.
rejectedWith
(
Error
,
'Order must be \'ASC\' or \'DESC\', \';DELETE YOLO INJECTIONS\' given'
);
});
it
(
'should throw with include when last order argument is not ASC or DESC'
,
function
()
{
return
expect
(
this
.
User
.
findAll
({
include
:
[
this
.
Group
],
order
:
[
[
this
.
Group
,
'id'
,
';DELETE YOLO INJECTIONS'
]
]
})).
to
.
eventually
.
be
.
rejectedWith
(
Error
,
'Order must be \'ASC\' or \'DESC\', \';DELETE YOLO INJECTIONS\' given'
);
});
it
(
'should not throw with include when last order argument is a field'
,
function
()
{
return
this
.
User
.
findAll
({
include
:
[
this
.
Group
],
order
:
[
[
this
.
Group
,
'id'
]
]
});
});
});
});
});
});
});
});
});
\ No newline at end of file
Write
Preview
Markdown
is supported
Attach a file
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to post a comment
