Warning: file_get_contents(/data/phpspider/zhask/data//catemap/9/java/313.json): failed to open stream: No such file or directory in /data/phpspider/zhask/libs/function.php on line 167

Warning: Invalid argument supplied for foreach() in /data/phpspider/zhask/libs/tag.function.php on line 1116

Notice: Undefined index: in /data/phpspider/zhask/libs/function.php on line 180

Warning: array_chunk() expects parameter 1 to be array, null given in /data/phpspider/zhask/libs/function.php on line 181
Java 这样使用Spring规范谓词安全吗?_Java_Spring_Spring Data Jpa - Fatal编程技术网
Fatal编程技术网
  • java/
  • Java 这样使用Spring规范谓词安全吗?

Java 这样使用Spring规范谓词安全吗?

java spring

Java 这样使用Spring规范谓词安全吗?,java,spring,spring-data-jpa,Java,Spring,Spring Data Jpa,我有以下代码: private static Specification<Entity> caseInsensitiveLike(SingularAttribute<Entity, String> field, String searchParameter) { return (root, query, cb) -> { Predicate predicate = null; if (searchPar

我有以下代码:

private static Specification<Entity> caseInsensitiveLike(SingularAttribute<Entity, String> field, String searchParameter) {
        return (root, query, cb) -> {
            Predicate predicate = null;
            if (searchParameter != null) {
                predicate = cb.like(
                        cb.upper(root.get(field)),
                        "%" + searchParameter.toUpperCase() + "%");
            }
            query.orderBy(cb.desc(root.get(ExternalPatientEntity_.dateCreated)));
            return predicate;
        };
    }

私有静态规范caseInsensitiveLike(SingularAttribute字段,String searchParameter){
返回(根、查询、cb)->{
谓词=null;
if(searchParameter!=null){
谓词=cb.like(
cb.upper(root.get(field)),
“%”+searchParameter.toUpperCase()+“%”;
}
orderBy(cb.desc(root.get(externalpatiententy_uu.dateCreated));
返回谓词;
};
}
我是否正确地理解了将不受控制的客户端提供的输入放在内置查询中,或者将其设置为jdbc语句的参数