Initial cloud-services repo - gateway service + pkg modules
This commit is contained in:
Chris Rai
51
pkg/validator/pg_order_by_test.go
Normal file
51
pkg/validator/pg_order_by_test.go
Normal file
@@ -0,0 +1,51 @@
|
||||
package validator_test
|
||||
|
||||
import (
|
||||
"testing"
|
||||
|
||||
"fiskerinc.com/modules/testhelper"
|
||||
"fiskerinc.com/modules/validator"
|
||||
)
|
||||
|
||||
type TestPageQueryOptions struct {
|
||||
Order string `json:"order" validate:"max=512,sqlorder"`
|
||||
Expected string
|
||||
}
|
||||
|
||||
func TestValidateSqlOrderBy(t *testing.T) {
|
||||
var tests = []TestPageQueryOptions{
|
||||
{
|
||||
Order: "",
|
||||
Expected: "",
|
||||
},
|
||||
{
|
||||
Order: "COLUMN",
|
||||
Expected: "",
|
||||
},
|
||||
{
|
||||
Order: "COLUMN DESC",
|
||||
Expected: "",
|
||||
},
|
||||
{
|
||||
Order: "COL_UMN DESC",
|
||||
Expected: "",
|
||||
},
|
||||
{
|
||||
Order: "CASE WHEN ('1'='1') THEN vin ELSE year END asc", // sql injection test
|
||||
Expected: "Key: 'TestPageQueryOptions.Order' Error:Field validation for 'Order' failed on the 'sqlorder' tag",
|
||||
},
|
||||
{ // This could be made to be valid
|
||||
Order: "col1 DESC, col2 DESC",
|
||||
Expected: "Key: 'TestPageQueryOptions.Order' Error:Field validation for 'Order' failed on the 'sqlorder' tag",
|
||||
},
|
||||
}
|
||||
|
||||
for _, test := range tests {
|
||||
err := validator.ValidateStruct(test)
|
||||
if err == nil && test.Expected != "" {
|
||||
t.Errorf(testhelper.TestErrorTemplate, test.Order, test.Expected, err)
|
||||
} else if err != nil && err.Error() != test.Expected {
|
||||
t.Errorf(testhelper.TestErrorTemplate, test.Order, test.Expected, err.Error())
|
||||
}
|
||||
}
|
||||
}
|
||||
Reference in New Issue
Block a user