johnny.ratton
/
API_SQLuedo
1
0
Fork 0
Code Issues 15 Pull Requests Packages Projects 1 Releases Wiki Activity

Correction d'un security review (Username et password en clean dans le code)
continuous-integration/drone/push Build is passing Details

Browse Source
deploiement^2^2
Maxime SAPOUNTZIS 1 year ago
parent 8b1f2280bc
commit 1f7cba0b22
3 changed files with 24 additions and 8 deletions
Show Stats Download Patch File Download Diff File

7
API_SQLuedo/API/Program.cs
Unescape View File

@ -95,6 +95,13 @@ builder.Services.AddCors(options =>
}); });
}); });
var configuration = new ConfigurationBuilder()
.SetBasePath(Directory.GetCurrentDirectory())
.AddJsonFile("appsettings.json", optional: false, reloadOnChange: true)
.Build();
builder.Services.AddSingleton(configuration);
var app = builder.Build(); var app = builder.Build();

20
API_SQLuedo/API/Service/QueryDataServiceApi.cs
Unescape View File

@ -4,6 +4,7 @@ using Model.OrderCriteria;
using Npgsql; using Npgsql;
using Shared; using Shared;
using Shared.Mapper; using Shared.Mapper;
using Microsoft.Extensions.Configuration;
using System.Text; using System.Text;
using Newtonsoft.Json; using Newtonsoft.Json;
using Microsoft.EntityFrameworkCore.Metadata.Internal; using Microsoft.EntityFrameworkCore.Metadata.Internal;
@ -11,11 +12,16 @@ using Microsoft.EntityFrameworkCore.Metadata.Internal;
namespace API.Service; namespace API.Service;
public class QueryDataServiceApi : IQueryService<QueryDto>{ public class QueryDataServiceApi : IQueryService<QueryDto>{
private readonly IConfiguration _configuration;
public QueryDataServiceApi(IConfiguration configuration)
{
_configuration = configuration;
}
public QueryDto ExecuteQuery(string query, string database) public QueryDto ExecuteQuery(string query, string database)
{ {
string connectionString = string connectionString = _configuration.GetConnectionString("DefaultConnection");
$"Host=localhost;Username=admin;Password=motdepasse;Database={database}"; connectionString = connectionString.Replace("{database}", database);
if (string.IsNullOrEmpty(database)) if (string.IsNullOrEmpty(database))
{ {
@ -67,8 +73,8 @@ public class QueryDataServiceApi : IQueryService<QueryDto>{
public QueryDto GetTables(string database) public QueryDto GetTables(string database)
{ {
string connectionString = string connectionString = _configuration.GetConnectionString("DefaultConnection");
$"Host=localhost;Username=admin;Password=motdepasse;Database={database}"; connectionString = connectionString.Replace("{database}", database);
try try
{ {
@ -120,10 +126,10 @@ public class QueryDataServiceApi : IQueryService<QueryDto>{
public QueryDto GetColumns(string database, string table) public QueryDto GetColumns(string database, string table)
{ {
string connectionString = string connectionString = _configuration.GetConnectionString("DefaultConnection");
$"Host=localhost;Username=admin;Password=motdepasse;Database={database}"; connectionString = connectionString.Replace("{database}", database);
using (NpgsqlConnection connection = new NpgsqlConnection(connectionString)) using (NpgsqlConnection connection = new NpgsqlConnection(connectionString))
{ {
connection.Open(); connection.Open();
using (NpgsqlCommand command = new NpgsqlCommand()) using (NpgsqlCommand command = new NpgsqlCommand())

5
API_SQLuedo/API/appsettings.json
Unescape View File

@ -5,5 +5,8 @@
"Microsoft.AspNetCore": "Warning" "Microsoft.AspNetCore": "Warning"
} }
}, },
"AllowedHosts": "*" "AllowedHosts": "*",
"ConnectionStrings": {
"DefaultConnection": "Host=localhost;Username=admin;Password=motdepasse;Database={database}"
}
} }

Write Preview
Loading…
Cancel
Save