jaculabilis/danbooru
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

refactored tsquery sql to use rails escaping mechanisms

Browse Source
This commit is contained in:
albert
2013-03-07 16:34:12 -05:00
parent b7a5612c82
commit 2338f004eb
10 changed files with 23 additions and 21 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
app/models/comment.rb
View File

@@ -16,7 +16,7 @@ class Comment < ActiveRecord::Base
end
def body_matches(query)
where("body_index @@ plainto_tsquery(?)", query).order("comments.id DESC")
where("body_index @@ plainto_tsquery(?)", query.to_escaped_for_tsquery_split).order("comments.id DESC")
end
def hidden(user)
@@ -28,7 +28,7 @@ class Comment < ActiveRecord::Base
end
def post_tags_match(query)
joins(:post).where("posts.tag_index @@ to_tsquery('danbooru', E?)", query)
joins(:post).where("posts.tag_index @@ to_tsquery('danbooru', ?)", query.to_escaped_for_tsquery_split)
end
def for_creator(user_id)