archtechx/tenancy
1
0
Fork 0
mirror of https://github.com/archtechx/tenancy.git synced 2026-05-07 01:04:03 +00:00
Code Activity

Add parameter validation to DB managers

Browse source 
DB manager methods validate the parameters they use in SQL statements using validateParameter() (excluding parameters passed via bindings in SELECT statements).
This commit is contained in:
lukinovec 2026-04-29 14:13:56 +02:00
parent ad7d229daf
commit bdf592c0ff
10 changed files with 67 additions and 11 deletions
Download patch file Download diff file Expand all files Collapse all files

8
src/Database/TenantDatabaseManagers/PostgreSQLSchemaManager.php
View file

@ -10,12 +10,16 @@ class PostgreSQLSchemaManager extends TenantDatabaseManager
{
public function createDatabase(TenantWithDatabase $tenant): bool
{
return $this->connection()->statement("CREATE SCHEMA \"{$tenant->database()->getName()}\"");
$name = $this->validateParameter($tenant->database()->getName());
return $this->connection()->statement("CREATE SCHEMA \"{$name}\"");
}
public function deleteDatabase(TenantWithDatabase $tenant): bool
{
return $this->connection()->statement("DROP SCHEMA \"{$tenant->database()->getName()}\" CASCADE");
$name = $this->validateParameter($tenant->database()->getName());
return $this->connection()->statement("DROP SCHEMA \"{$name}\" CASCADE");
}
public function databaseExists(string $name): bool