RSpec
Ruby on Rails
Ruby
method
sanitize_limit
v3.0.7 -
Show latest stable
-
0 notes -
Class: ActiveRecord::ConnectionAdapters::DatabaseStatements
- 1.0.0
- 1.1.0
- 1.1.1
- 1.1.6
- 1.2.0
- 1.2.6
- 2.0.0
- 2.0.1
- 2.0.3
- 2.1.0 (0)
- 2.2.1 (38)
- 2.3.2 (0)
- 2.3.8 (0)
- 3.0.0 (0)
- 3.0.5 (10)
- 3.0.7 (0)
- 3.0.9 (-2)
- 3.1.0 (0)
- 3.2.1 (0)
- 3.2.3 (0)
- 3.2.8 (0)
- 3.2.13 (0)
- What's this?
-
add_limit!
(<= v2.3.8)
-
add_limit_offset!
-
add_lock!
(<= v2.3.8)
-
add_transaction_record
-
begin_db_transaction
-
case_sensitive_equality_ope...
-
commit_db_transaction
-
commit_transaction_records
-
default_sequence_name
-
delete
-
delete_sql
-
empty_insert_statement
(<= v2.3.8)
-
empty_insert_statement_value
-
exec_delete
(>= v3.1.0)
-
exec_insert
(>= v3.1.0)
-
exec_query
(>= v3.1.0)
-
exec_update
(>= v3.1.0)
-
execute
-
insert
-
insert_fixture
-
insert_sql
-
join_to_update
(>= v3.1.0)
-
last_inserted_id
(>= v3.1.0)
-
limited_update_conditions
-
outside_transaction?
-
reset_sequence!
-
rollback_db_transaction
-
rollback_transaction_records
-
sanitize_limit
-
select
-
select_all
-
select_one
-
select_rows
-
select_value
-
select_values
-
sql_for_insert
(>= v3.1.0)
-
supports_statement_cache?
(>= v3.1.0)
-
to_sql
(>= v3.1.0)
-
transaction
-
update
-
update_sql
= private
= protected
sanitize_limit(limit)
public
Sanitizes the given LIMIT parameter in order to prevent SQL injection.
The limit may be anything that can evaluate to a string via #to_s. It should look like an integer, or a comma-delimited list of integers, or an Arel SQL literal.
Returns Integer and Arel::Nodes::SqlLiteral limits as is. Returns the sanitized limit parameter, either as an integer, or as a string which contains a comma-delimited list of integers.
