xioayue
/
btgym_php
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
Browse Source

防止sql注入

master
wanghongjun 3 years ago
parent
a6f0f141de
commit
bd94f83bfd
2 changed files with 8 additions and 6 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 12
      source/application/api/controller/pass/Passcc.php
  2. 2
      source/application/common/logic/PassFlow.php

12
source/application/api/controller/pass/Passcc.php
View File

@ -26,8 +26,8 @@ class Passcc extends Controller
public function allGroupTimeNum()
{
$granularity = $this->request->param('granularity');
$groupsId = $this->request->param('groupsId');
$res = PassFlow::allGroupTimeNum(['granularity' => $granularity, 'groupsId' => $groupsId]);
$type = $this->request->param('type');
$res = PassFlow::allGroupTimeNum(['granularity' => $granularity, 'type' => $type]);
if (empty($res['code'])) $this->renderError($res['msg']);
$data = $res['data'];
return $this->renderSuccess(compact('data'));
@ -42,8 +42,8 @@ class Passcc extends Controller
*/
public function allGroupNum()
{
$groupsId = $this->request->param('groupsId') ?: '';
$returnData = PassFlow::allGroupNum(null,['groupsId' => $groupsId]);
$type = $this->request->param('type') ?: '';
$returnData = PassFlow::allGroupNum(null,['type' => $type]);
return $this->renderSuccess(compact('returnData'));
}
@ -69,8 +69,8 @@ class Passcc extends Controller
*/
public function toDayGroupsEnterNum()
{
$groupsId = $this->request->param('groupsId') ?: '';
$data = PassFlow::toDayGroupsEnterNum(null,['groupsId' => $groupsId]);
$type = $this->request->param('type') ?: '';
$data = PassFlow::toDayGroupsEnterNum(null,['type' => $type]);
return $this->renderSuccess(compact('data'));
}

2
source/application/common/logic/PassFlow.php
View File

@ -7,6 +7,7 @@ use app\common\dm\Dm;
class PassFlow
{
protected static $groupType = [1,2];# 1 = 体育 2 = 文化
protected static $granularity = ['daily','monthly','yearly'];# 1 = 体育 2 = 文化
protected static function getGroupIds($dm,$type = 1)
{
@ -31,6 +32,7 @@ class PassFlow
$type = $param['type'];
if (empty($granularity)) return ['code' => 0, 'msg' => '缺少参数:granularity'];
if (!in_array($granularity,self::$granularity)) return ['code' => 0, 'msg' => '参数错误:granularity'];
$where = '';
$groupsId = '';
if (!empty($type)) {

Write Preview
Loading…
Cancel
Save