Autres/Rivendellaudio
1
0
Fork 0
mirror of https://github.com/ElvishArtisan/rivendell.git synced 2025-10-21 06:01:15 +02:00
Code Issues Projects Releases Wiki Activity

2021-04-18 Fred Gleason <fredg@paravelsystems.com>

Browse Source 
* Escaped all SQL identifiers in 'rdadmin/'.
	* Replaced " with ' delimiters in all SQL literal strings in
	'rdadmin/'.

Signed-off-by: Fred Gleason <fredg@paravelsystems.com>
This commit is contained in:
Fred Gleason
2021-04-18 21:23:19 -04:00
parent 0fd02861f9
commit 6264ec3235
67 changed files with 841 additions and 939 deletions
Download Patch File Download Diff File Expand all files Collapse all files

22
rdadmin/edit_sas_resource.cpp
View File

@@ -102,12 +102,12 @@ int EditSasResource::exec(unsigned id)
edit_id=id;
QString sql=QString("select ")+
"NUMBER,"+ // 00
"ENGINE_NUM,"+ // 01
"DEVICE_NUM,"+ // 02
"RELAY_NUM "+ // 03
"from VGUEST_RESOURCES where "+
QString().sprintf("ID=%u",edit_id);
"`NUMBER`,"+ // 00
"`ENGINE_NUM`,"+ // 01
"`DEVICE_NUM`,"+ // 02
"`RELAY_NUM` "+ // 03
"from `VGUEST_RESOURCES` where "+
QString().sprintf("`ID`=%u",edit_id);
RDSqlQuery *q=new RDSqlQuery(sql);
if(q->first()) {
if(q->value(1).toInt()>=0) {
@@ -171,11 +171,11 @@ void EditSasResource::okData()
}
}
QString sql=QString("update VGUEST_RESOURCES set ")+
QString().sprintf("ENGINE_NUM=%d,",enginenum)+
QString().sprintf("DEVICE_NUM=%d,",devicenum)+
QString().sprintf("RELAY_NUM=%d ",relaynum)+
QString().sprintf("where ID=%u",edit_id);
QString sql=QString("update `VGUEST_RESOURCES` set ")+
QString().sprintf("`ENGINE_NUM`=%d,",enginenum)+
QString().sprintf("`DEVICE_NUM`=%d,",devicenum)+
QString().sprintf("`RELAY_NUM`=%d ",relaynum)+
QString().sprintf("where `ID`=%u",edit_id);
RDSqlQuery::apply(sql);
done(true);