堆栈内存溢出
  简体   繁体   English

Java Spring Request正文中的转义引号

[英]Escape quotes in java spring request body

 原文  2018-03-28 07:42:33       java/ spring/ rest/ spring-boot

问题描述

I have a Java Spring controller. 我有一个Java Spring控制器。 I want to escape all quotes in my request (sanitize it for using it in SQL queries for example). 我想对请求中的所有引号进行转义(例如,将其用于SQL查询中进行消毒)。

Is there a way to do that with Spring ? Spring有办法做到这一点吗?

Example : 范例: 

@RequestMapping(method = RequestMethod.POST)
public List<String[]> myEndpoint(@RequestBody Map<String, String> params, @AuthenticationPrincipal Account connectedUser) throws Exception{
    return myService.runQuery(params, connectedUser);
}

1 个解决方案

解决方案1
 1  2018-03-28 08:02:52

If you want to validate all your request parameters in controllers, you can use custom validators. 如果要在控制器中验证所有请求参数,则可以使用自定义验证器。 For Complete info, check Complete Example 有关完整信息,请查看“ 完整示例”

Brief Overview: 简要概述:

Validator Implementation 验证器实施 

@Component
public class YourValidator implements Validator {

@Override
    public boolean supports(Class<?> clazz) {
        return clazz.isAssignableFrom(YourPojoType.class);
}

@Override
    public void validate(Object target, Errors errors) {
        if (target instanceof YourPojoType) {
           YourPojoType req = (YourPojoType) target;
           Map<String, String> params = req.getParams();
           //Do your validations.
           //if any validation failed, 
           errors.rejectValue("yourFieldName", "YourCustomErrorCode", "YourCustomErrorMessage");
        }
    }
}

Controller 调节器 

@RestController
public class YourController{

   @Autowired
   private YourValidator validator;

   @RequestMapping(method = RequestMethod.POST)
   public List<String[]> myEndpoint(@Valid YourPojoType req, BindingResult result, @AuthenticationPrincipal Account connectedUser) throws Exception{

    if (result.hasErrors()) {
       //throw exception
    }
    return myService.runQuery(params, connectedUser);
} 

@InitBinder
private void initBinder(WebDataBinder binder) {
    binder.setValidator(validator);
}

} }

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 Java中的字符串中的转义引号 - Escape quotes in a String in Java 如何在Java中转义引号 - How to escape quotes in Java Spring Rest 模板从数组中的请求正文中删除引号 - Spring Rest Template remove quotes from request body in array 如何在Java中获取没有转义序列的post请求的响应主体? - How to get response body of a post request without escape sequences in Java? Spring JSON请求体未映射到Java POJO - Spring JSON request body not mapped to Java POJO Java Spring REST控制器:请求主体不完整 - Java spring REST controller: incomplete request body 如何在 spring Webflux Java 中记录请求正文 - How to log request body in spring Webflux Java Java-样式属性中的转义引号 - Java - Escape quotes in style attribute Java字符串使用不带转义符的引号 - Java String use quotes without escape character 如何在Java中的MySQL语句中转义引号 - How to escape quotes in a MySQL statement in Java
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM