SQL injection prevention and query security. More...

#include <secure_connection.h>

Collaboration diagram for database::security::query_security:

Static Public Member Functions
static bool	is_query_safe (const std::string &query)

static std::string	sanitize_input (const std::string &input)

static std::string	escape_sql_string (const std::string &value)

static bool	detect_suspicious_patterns (const std::string &query)

static std::vector< std::string >	extract_table_names (const std::string &query)

static bool	validate_table_access (const std::string &table, const std::string &operation, const std::string &user)

static std::string	convert_to_prepared_statement (const std::string &query, const std::vector< core::database_value > &parameters)

Static Private Attributes
static const std::vector< std::string >	dangerous_keywords_

static const std::vector< std::string >	injection_patterns_

Detailed Description

SQL injection prevention and query security.

Definition at line 160 of file secure_connection.h.

Member Function Documentation

◆ convert_to_prepared_statement()

static std::string database::security::query_security::convert_to_prepared_statement	(	const std::string &	query,
		const std::vector< core::database_value > &	parameters )

static

◆ detect_suspicious_patterns()

static bool database::security::query_security::detect_suspicious_patterns ( const std::string & query )

static

◆ escape_sql_string()

static std::string database::security::query_security::escape_sql_string ( const std::string & value )

static

◆ extract_table_names()

static std::vector< std::string > database::security::query_security::extract_table_names ( const std::string & query )

static

◆ is_query_safe()

static bool database::security::query_security::is_query_safe ( const std::string & query )

static

◆ sanitize_input()

static std::string database::security::query_security::sanitize_input ( const std::string & input )

static

◆ validate_table_access()

static bool database::security::query_security::validate_table_access	(	const std::string &	table,
		const std::string &	operation,
		const std::string &	user )

static

Member Data Documentation

◆ dangerous_keywords_

const std::vector<std::string> database::security::query_security::dangerous_keywords_

staticprivate

Definition at line 177 of file secure_connection.h.

◆ injection_patterns_

const std::vector<std::string> database::security::query_security::injection_patterns_

staticprivate

Definition at line 178 of file secure_connection.h.

The documentation for this class was generated from the following file:

database/security/secure_connection.h

Static Public Member Functions

Static Private Attributes

Detailed Description

Member Function Documentation

◆ convert_to_prepared_statement()

◆ detect_suspicious_patterns()

◆ escape_sql_string()

◆ extract_table_names()

◆ is_query_safe()

◆ sanitize_input()

◆ validate_table_access()

Member Data Documentation

◆ dangerous_keywords_

◆ injection_patterns_