Code Review
/
dmaap
/
datarouter.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
review
|
tree
raw
|
inline
| side by side
Fix new sonar vulnerabilities
[dmaap/datarouter.git]
/
datarouter-prov
/
src
/
main
/
java
/
org
/
onap
/
dmaap
/
datarouter
/
provisioning
/
beans
/
Group.java
diff --git
a/datarouter-prov/src/main/java/org/onap/dmaap/datarouter/provisioning/beans/Group.java
b/datarouter-prov/src/main/java/org/onap/dmaap/datarouter/provisioning/beans/Group.java
index
a460d64
..
91d6c1b
100644
(file)
--- a/
datarouter-prov/src/main/java/org/onap/dmaap/datarouter/provisioning/beans/Group.java
+++ b/
datarouter-prov/src/main/java/org/onap/dmaap/datarouter/provisioning/beans/Group.java
@@
-133,14
+133,15
@@
public class Group extends Syncable {
}
\r
\r
public static Collection<String> getGroupsByClassfication(String classfication) {
\r
}
\r
\r
public static Collection<String> getGroupsByClassfication(String classfication) {
\r
- List<String> list = new ArrayList<
String
>();
\r
- String sql = "select * from GROUPS where classification =
'" + classfication + "'
";
\r
+ List<String> list = new ArrayList<>();
\r
+ String sql = "select * from GROUPS where classification =
?
";
\r
try {
\r
DB db = new DB();
\r
@SuppressWarnings("resource")
\r
Connection conn = db.getConnection();
\r
try {
\r
DB db = new DB();
\r
@SuppressWarnings("resource")
\r
Connection conn = db.getConnection();
\r
- try(Statement stmt = conn.createStatement()) {
\r
- try(ResultSet rs = stmt.executeQuery(sql)) {
\r
+ try(PreparedStatement stmt = conn.prepareStatement(sql)) {
\r
+ stmt.setString(1, classfication);
\r
+ try(ResultSet rs = stmt.executeQuery()) {
\r
while (rs.next()) {
\r
int groupid = rs.getInt("groupid");
\r
\r
while (rs.next()) {
\r
int groupid = rs.getInt("groupid");
\r
\r