PBBFA23CIV/EIANotesApp
2
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

prepare sql

Browse Source
This commit is contained in:
Felix Ivo 2025-06-16 10:26:41 +02:00
parent 5248f1c59c
commit be8a0990e8
1 changed files with 0 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
Controller/NotesController.php
View File

@ -21,13 +21,6 @@ class NotesController
$sortBy = $_GET['sort_by'] ?? 'updated_at'; $sortBy = $_GET['sort_by'] ?? 'updated_at';
$sortOrder = strtoupper($_GET['sort_order'] ?? 'DESC'); $sortOrder = strtoupper($_GET['sort_order'] ?? 'DESC');
// Validate sort order to prevent SQL injection
$sortOrder = in_array($sortOrder, ['ASC', 'DESC']) ? $sortOrder : 'DESC';
// Validate sort column to prevent SQL injection
$validSortColumns = ['id', 'title', 'updated_at', 'created_at'];
$sortBy = in_array($sortBy, $validSortColumns) ? $sortBy : 'updated_at';
$this->view->setVars([ $this->view->setVars([
"notes" => $this->notesModel->selectNotesForUser(2, $sortBy, $sortOrder) //$_SESSION['user_id'] "notes" => $this->notesModel->selectNotesForUser(2, $sortBy, $sortOrder) //$_SESSION['user_id']
]); ]);