Revision 6595
Added by ben leinfelder over 12 years ago
PermissionController.java | ||
---|---|---|
459 | 459 |
// check out DBConnection |
460 | 460 |
conn = DBConnectionPool.getDBConnection("PermissionControl.isAccessDoc"); |
461 | 461 |
serialNumber = conn.getCheckOutSerialNumber(); |
462 |
pStmt = conn.prepareStatement("select doctype from xml_documents where "
|
|
463 |
+ "docid like '" + docId + "'");
|
|
462 |
pStmt = conn.prepareStatement("select doctype from xml_documents where docid like ? ");
|
|
463 |
pStmt.setString(1, docId);
|
|
464 | 464 |
pStmt.execute(); |
465 | 465 |
ResultSet rs = pStmt.getResultSet(); |
466 | 466 |
boolean hasRow = rs.next(); |
Also available in: Unified diff
http://bugzilla.ecoinformatics.org/show_bug.cgi?id=5527