riak search java client - sql injection

Jason W jason.w.prog at gmail.com
Sun Mar 22 22:03:07 EDT 2015


Hello,

I try to use the riak search java client, specifically the Search.Builder
class, like the following

Search search = new Search.Builder("test", "_yz_rb:accounts AND email:" +
 [user-email]).


"[user-email]" is what user entered in the login form, my question is about
sql injection, it seems like the java search client api doesn't prevent sql
injection, are there any other api/methods that I can use to prevent this?
Thank you
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.basho.com/pipermail/riak-users_lists.basho.com/attachments/20150322/e1f1103e/attachment-0002.html>


More information about the riak-users mailing list