Hi Joel-
I think what you propose for an integer value would work fine. The problem
comes when you work with strings. SQL injection follows specific rules
(i.e. "; delete from users; --"). Since it usually relies on ending the
previous statement, injecting a new statement, and then commenting the r
I just started some work on a side project for a PHP project in Orient.
I'm mostly used to using Orient in the Java API and the REST interface via
javascript, but have a lot of experience in PHP. I was hoping the php
driver would be able to do a prepared statement kind of query like I get in
HI Luca-
I don't have a ton of time to work on it at the moment, but when I get a
chance I can take a stab at it if no one else has the time. It is something
that I think would be required for a useful library.
Thanks,
Jonathan
On Tue, Dec 30, 2014 at 6:45 PM, Luca Garulli wrote:
> Hi Jonatha
Hi Jonathan,
WDYT about contributing at it? We could "upgrade" the OrientDB Doctrine
module to bind the new PHP driver.
Any volunteer?
Lvc@
On 30 December 2014 at 16:31, Jonathan Rosen wrote:
> Good work guys. You should really take a look at incorporating some of the
> Orientdb helper functi
Good work guys. You should really take a look at incorporating some of the
Orientdb helper functions from the Doctrine library:
https://github.com/doctrine/orientdb-odm
The binary protocol is great, but it would be much more useful if it
implemented prepared statements (or a client side equival