zydronium/internetee-registry
1
0
Fork 0
mirror of https://github.com/internetee/registry.git synced 2025-07-03 01:33:36 +02:00
Code Issues Projects Releases Packages Wiki Activity

Just in case sanitize zonefile query

Browse source
This commit is contained in:
Priit Tark 2015-05-16 10:42:00 +03:00
parent b18f450131
commit e1d596f3d3
1 changed files with 2 additions and 4 deletions
Download patch file Download diff file Expand all files Collapse all files

6
app/models/zonefile_setting.rb
View file

@ -13,10 +13,8 @@ class ZonefileSetting < ActiveRecord::Base
filename = "#{origin}.zone"
STDOUT << "#{Time.zone.now.utc} - Generating zonefile #{filename}\n"
zf = ActiveRecord::Base.connection.execute(
"select generate_zonefile('#{origin}')"
)[0]['generate_zonefile']
sanitized_query = sanitize_sql("select generate_zonefile(?)", origin)
zf = ActiveRecord::Base.connection.execute(sanitized_query)[0]['generate_zonefile']
File.open("#{ENV['zonefile_export_dir']}/#{filename}", 'w') { |f| f.write(zf) }