method
sanitize_sql_for_conditions
v6.1.3.1 -
Show latest stable
- Class:
ActiveRecord::Sanitization::ClassMethods
sanitize_sql_for_conditions(condition)public
Accepts an array or string of SQL conditions and sanitizes them into a valid SQL fragment for a WHERE clause.
sanitize_sql_for_conditions(["name=? and group_id=?", "foo'bar", 4]) # => "name='foo''bar' and group_id=4" sanitize_sql_for_conditions(["name=:name and group_id=:group_id", name: "foo'bar", group_id: 4]) # => "name='foo''bar' and group_id='4'" sanitize_sql_for_conditions(["name='%s' and group_id='%s'", "foo'bar", 4]) # => "name='foo''bar' and group_id='4'" sanitize_sql_for_conditions("name='foo''bar' and group_id='4'") # => "name='foo''bar' and group_id='4'"
- disallow_raw_sql!
- sanitize_sql
- sanitize_sql_array
- sanitize_sql_for_assignment
- sanitize_sql_for_conditions
- sanitize_sql_for_order
- sanitize_sql_hash_for_assignment
- sanitize_sql_like
-
quote_bound_value - raise_if_bind_arity_mismatch
- replace_bind_variable
- replace_bind_variables
- replace_named_bind_variables