Class: ActiveRecord::ConnectionAdapters::AbstractAdapter

Inherits:

Object

Object
ActiveRecord::ConnectionAdapters::AbstractAdapter

show all

Defined in:: lib/model_set/sql_base_query.rb

Instance Method Summary collapse

#ids_clause(ids, field, id_type) ⇒ Object

Instance Method Details

#ids_clause(ids, field, id_type) ⇒ `Object`

# File 'lib/model_set/sql_base_query.rb', line 44

def ids_clause(ids, field, id_type)
  return "FALSE" if ids.empty?

  if id_type == :integer
    # Make sure all ids are integers to prevent SQL injection attacks.
    ids = ids.collect {|id| id.to_i}

    if kind_of?(ActiveRecord::ConnectionAdapters::PostgreSQLAdapter)
      "#{field} = ANY ('{#{ids.join(',')}}'::bigint[])"
    else
      "#{field} IN (#{ids.join(',')})"
    end
  elsif id_type == :string
    ids = ids.collect do |id|
      raise ArgumentError.new('Invalid id: #{id}') if id =~ /'/
      "'#{id}'"
    end
    "#{field} IN (#{ids.join(',')})"
  end
end

Class: ActiveRecord::ConnectionAdapters::AbstractAdapter

Instance Method Summary collapse

Instance Method Details

#ids_clause(ids, field, id_type) ⇒ Object

#ids_clause(ids, field, id_type) ⇒ `Object`