Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- var type = req.params.type;
- var p = req.params.page-1 || 0;
- var q = knex(type).select().where(req.query);
- var sc = req.params.searchcol;
- var sv = req.params.searchval;
- if(sc)
- q.andWhereRaw(sc,"like","%"+sv+"%");
- // if(sc)// FIXME falha de segurança
- // q.andWhereRaw("upper("+sc+") like upper(?)",["%"+sv+"%"]);
- var oc = req.params.ordercol;
- var ad = req.params.ascdesc;
- if(oc)
- q.orderBy(oc,ad);
- q.offset(pagesize * p).limit(pagesize);
- q.then(function(ret){
- res.json(ret);
- }).catch(function(err){
- console.log(err);
- res.status(500).send(err);
- });
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement