From: | Harshal Dhumal <harshal(dot)dhumal(at)enterprisedb(dot)com> |
---|---|
To: | Ashesh Vashi <ashesh(dot)vashi(at)enterprisedb(dot)com> |
Cc: | pgadmin-hackers <pgadmin-hackers(at)postgresql(dot)org> |
Subject: | Re: New macros for sequence node [pgadmin4] |
Date: | 2016-02-10 13:27:04 |
Message-ID: | CAFiP3vz6=GvkEOpRZ8-kUX8=enZYsJbEPQgwyn8EBs9M6h81oQ@mail.gmail.com |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgadmin-hackers |
Hi,
PFA patch for schema macros for security and privilege.
Now I have moved macros related to schema and its child object under
schemas/templates/macros/schemas folder
--
*Harshal Dhumal*
*Software Engineer *
EenterpriseDB <http://www.enterprisedb.com>
On Wed, Feb 10, 2016 at 5:41 PM, Harshal Dhumal <
harshal(dot)dhumal(at)enterprisedb(dot)com> wrote:
> Hi,
>
> Here is updated patch for macros. I have added required validation in
> macros.
>
>
> --
> *Harshal Dhumal*
> *Software Engineer *
>
>
>
> EenterpriseDB <http://www.enterprisedb.com>
>
> On Wed, Feb 10, 2016 at 1:06 PM, Ashesh Vashi <
> ashesh(dot)vashi(at)enterprisedb(dot)com> wrote:
>
>> On Tue, Feb 9, 2016 at 3:48 PM, Harshal Dhumal <
>> harshal(dot)dhumal(at)enterprisedb(dot)com> wrote:
>>
>>> Hi,
>>>
>>> PFA of macros (privilege, security) for sequence node.
>>>
>>> Also fixed minor issue in security macro (removed unwanted qtIdent for
>>> provider)
>>>
>> This is not allowed.
>> We can't pass on the data coming from the client blindly to the server.
>> It is an area, which can introduce the SQL injection in our code.
>>
>> Hence - I can't allowed that.
>>
>> --
>>
>> Thanks & Regards,
>>
>> Ashesh Vashi
>> EnterpriseDB INDIA: Enterprise PostgreSQL Company
>> <http://www.enterprisedb.com/>
>>
>>
>> *http://www.linkedin.com/in/asheshvashi*
>> <http://www.linkedin.com/in/asheshvashi>
>>
>>>
>>>
>>>
>>> --
>>> *Harshal Dhumal*
>>> *Software Engineer *
>>>
>>>
>>>
>>> EenterpriseDB <http://www.enterprisedb.com>
>>>
>>>
>>> --
>>> Sent via pgadmin-hackers mailing list (pgadmin-hackers(at)postgresql(dot)org)
>>> To make changes to your subscription:
>>> http://www.postgresql.org/mailpref/pgadmin-hackers
>>>
>>>
>>
>
Attachment | Content-Type | Size |
---|---|---|
schemas_macros_10_Feb_2.patch | text/x-patch | 2.0 KB |
From | Date | Subject | |
---|---|---|---|
Next Message | Harshal Dhumal | 2016-02-10 13:41:30 | Re: Patch sequence node [pgadmin4] |
Previous Message | Susan Douglas | 2016-02-10 13:12:39 | Re: Backup and Restore dialog documentation updates |