mirror/VentureChat
1
0
Fork 1
mirror of https://github.com/Aust1n46/VentureChat.git synced 2025-05-22 18:09:06 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
VentureChat/MineverseChat/mineverse/Aust1n46/chat/database/Database.java
Aust1n46 d7858a791a Fixed SQL injection vulnerability in the MySQL logging feature. Using 
Hikari library to automatically reconnect to database. Thanks to
metalshark setting this up.
2020-03-25 17:44:03 -04:00

44 lines
1.4 KiB
Java
Raw Blame History

package mineverse.Aust1n46.chat.database;
import java.sql.Connection;
import java.sql.PreparedStatement;
import java.sql.SQLException;
import org.bukkit.Bukkit;
import com.zaxxer.hikari.HikariDataSource;
import mineverse.Aust1n46.chat.MineverseChat;
//Parent class for both the MySQL and SQLite database classes.
public abstract class Database {
protected HikariDataSource dataSource = null;
public abstract void init();
public void writeVentureChat(String time, String uuid, String name, String server, String channel, String text, String type) {
MineverseChat plugin = MineverseChat.getInstance();
Bukkit.getScheduler().runTaskAsynchronously(plugin, () -> {
try {
final Connection conn = dataSource.getConnection();
conn.setAutoCommit(false);
final PreparedStatement statement = conn.prepareStatement(
"INSERT INTO VentureChat " +
"(ChatTime, UUID, Name, Server, Channel, Text, Type) " +
"VALUES (?, ?, ?, ?, ?, ?, ?)");
statement.setString(1, time);
statement.setString(2, uuid);
statement.setString(3, name);
statement.setString(4, server);
statement.setString(5, channel);
statement.setString(6, text);
statement.setString(7, type);
statement.executeUpdate();
conn.commit();
} catch(SQLException e) {
throw new RuntimeException(e);
}
});
}
}
Reference in New Issue View Git Blame Copy Permalink