Skip to content

Commit a128efe

Browse files
JacobLinCoolJacobLinCool
authored
Merge pull request #54 from moalamri/fix49
Fix #49
2 parents 1e980bd + f87d4c6 commit a128efe

4 files changed

Lines changed: 11 additions & 10 deletions

File tree

.gitignore

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -8,6 +8,7 @@ node_modules
88
!.env.example
99
vite.config.js.timestamp-*
1010
vite.config.ts.timestamp-*
11+
wrangler.toml
1112

1213
cfai/
1314
.wrangler/

src/lib/plugin/RunQuery.svelte

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -6,7 +6,7 @@
66
export let database: string;
77
export let table: string;
88
9-
$: query = `SELECT * FROM ${table} LIMIT 100`;
9+
$: query = `SELECT * FROM \`${table}\` LIMIT 100`;
1010
$: danger = is_dangerous(query);
1111
1212
let running = false;

src/routes/api/db/[database]/[table]/+server.ts

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -18,7 +18,7 @@ export const GET: RequestHandler = async ({ params, locals, url, fetch }) => {
1818
throw error(404, "Database not found");
1919
}
2020

21-
const { results } = await db.prepare(`SELECT COUNT(*) AS count FROM ${params.table}`).all<{
21+
const { results } = await db.prepare(`SELECT COUNT(*) AS count FROM \`${params.table}\``).all<{
2222
count: number;
2323
}>();
2424

@@ -35,6 +35,6 @@ export const DELETE: RequestHandler = async ({ params, locals }) => {
3535
throw error(404, "Database not found");
3636
}
3737

38-
const result = await db.prepare(`DROP TABLE ${params.table}`).run();
38+
const result = await db.prepare(`DROP TABLE \`${params.table}\``).run();
3939
return json(result);
4040
};

src/routes/api/db/[database]/[table]/data/+server.ts

Lines changed: 7 additions & 7 deletions
Original file line numberDiff line numberDiff line change
@@ -27,7 +27,7 @@ export const GET: RequestHandler = async ({ url, params, locals, fetch }) => {
2727

2828
const { results } = await db
2929
.prepare(
30-
`SELECT ${select} FROM ${params.table}${where ? ` WHERE ${where}` : ""}${
30+
`SELECT ${select} FROM \`${params.table}\`${where ? ` WHERE ${where}` : ""}${
3131
order ? ` ORDER BY ${order} ${dir}` : ""
3232
} LIMIT ${limit} OFFSET ${offset}`,
3333
)
@@ -58,9 +58,9 @@ export const POST: RequestHandler = async ({ request, params, locals }) => {
5858

5959
const statement = db
6060
.prepare(
61-
`INSERT INTO ${params.table} (${Object.keys(data).join(", ")}) VALUES (${Object.keys(
62-
data,
63-
)
61+
`INSERT INTO \`${params.table}\` (${Object.keys(data)
62+
.map((key) => `\`${key}\``)
63+
.join(", ")}) VALUES (${Object.keys(data)
6464
.map(() => "?")
6565
.join(", ")})`,
6666
)
@@ -95,8 +95,8 @@ export const PUT: RequestHandler = async ({ url, request, params, locals }) => {
9595

9696
const statement = db
9797
.prepare(
98-
`UPDATE ${params.table} SET ${Object.keys(data)
99-
.map((key) => `${key} = ?`)
98+
`UPDATE \`${params.table}\` SET ${Object.keys(data)
99+
.map((key) => `\`${key}\` = ?`)
100100
.join(", ")} WHERE ${where_sql(where)}`,
101101
)
102102
.bind(...Object.values(data), ...Object.values(where));
@@ -119,7 +119,7 @@ export const DELETE: RequestHandler = async ({ url, params, locals }) => {
119119
const where = Object.fromEntries(url.searchParams.entries());
120120

121121
const statement = db
122-
.prepare(`DELETE FROM ${params.table} WHERE ${where_sql(where)}`)
122+
.prepare(`DELETE FROM \`${params.table}\` WHERE ${where_sql(where)}`)
123123
.bind(...Object.values(where));
124124
const result = await statement.run();
125125
return json(result);

0 commit comments

Comments
 (0)