zoukankan      html  css  js  c++  java

  • 防止sql注入统一验证

    static string str = "|add|and|exec|insert|select|delete|update|chr|mid|master|or|truncate|char|declare|join|";
        public static bool DataVerify()
        {
            string type = HttpContext.Current.Request.RequestType.ToLower();
            bool flag = true;
            if (type == "post")
            {
                for (int i = 0; i < HttpContext.Current.Request.Form.Count; i++)
                {
                    string value = HttpContext.Current.Request.Form[i].ToString().Trim();
                    if (str.Contains("|" + value + "|"))
                    {
                        flag = false;
                    }
                }
            }
            else if (type == "get")
            {
                for (int i = 0; i < HttpContext.Current.Request.QueryString.Count; i++)
                {
                    if (str.Contains("|" + HttpContext.Current.Request.QueryString[i].ToString().Trim() + "|"))
                    {
                        flag = false;
                    }
                }
            }
            else
            {
                flag = false;
            }
            return flag;
        }
  • 相关阅读:
    transient关键字
    java 序列化,反序列化工具
    switch case语法
    java空map定义
    斐波那契数列的实现算法
    正则表达式
    java业务逻辑代码中需要增加一些与主流业务无关操作
    阿里巴巴开发手册对manager层的定义
    july 19
    bulletproof monk quote
  • 原文地址:https://www.cnblogs.com/ajun/p/2913599.html
Copyright © 2011-2022 走看看