public function OrderByTest::testFieldEscaping in Zircon Profile 8
Same name and namespace in other branches
- 8.0 core/tests/Drupal/Tests/Core/Database/OrderByTest.php \Drupal\Tests\Core\Database\OrderByTest::testFieldEscaping()
Tests that fields passed for ordering get escaped properly.
File
- core/
tests/ Drupal/ Tests/ Core/ Database/ OrderByTest.php, line 49 - Contains \Drupal\Tests\Core\Database\OrderByTest.
Class
- OrderByTest
- Tests the orderBy() method of select queries.
Namespace
Drupal\Tests\Core\DatabaseCode
public function testFieldEscaping() {
$this->query
->orderBy('x; DROP table node; --');
$sql = $this->query
->__toString();
$this
->assertStringEndsWith('ORDER BY xDROPtablenode ASC', $sql, 'Order by field is escaped correctly.');
}