Bael 3043 datastax cassandra (#7616)
* BAEL-3043: Datastax Java Driver for Apache Cassandra * changed statement to use query builder * fixed concatenation vulnerability
This commit is contained in:
Joel Juarez
KevinGilmore
parent
e9e4f63313
commit
0d648321dc
@ -35,6 +35,11 @@
|
|||||||
<artifactId>java-driver-core</artifactId>
|
<artifactId>java-driver-core</artifactId>
|
||||||
<version>${datastax-cassandra.version}</version>
|
<version>${datastax-cassandra.version}</version>
|
||||||
</dependency>
|
</dependency>
|
||||||
|
<dependency>
|
||||||
|
<groupId>com.datastax.oss</groupId>
|
||||||
|
<artifactId>java-driver-query-builder</artifactId>
|
||||||
|
<version>${datastax-cassandra.version}</version>
|
||||||
|
</dependency>
|
||||||
|
|
||||||
<dependency>
|
<dependency>
|
||||||
<groupId>io.netty</groupId>
|
<groupId>io.netty</groupId>
|
||||||
|
|||||||
@ -26,7 +26,7 @@ public class Application {
|
|||||||
|
|
||||||
KeyspaceRepository keyspaceRepository = new KeyspaceRepository(session);
|
KeyspaceRepository keyspaceRepository = new KeyspaceRepository(session);
|
||||||
|
|
||||||
keyspaceRepository.createKeyspace("testKeyspace", "SimpleStrategy", 1);
|
keyspaceRepository.createKeyspace("testKeyspace", 1);
|
||||||
keyspaceRepository.useKeyspace("testKeyspace");
|
keyspaceRepository.useKeyspace("testKeyspace");
|
||||||
|
|
||||||
VideoRepository videoRepository = new VideoRepository(session);
|
VideoRepository videoRepository = new VideoRepository(session);
|
||||||
|
|||||||
@ -1,7 +1,11 @@
|
|||||||
package com.baeldung.datastax.cassandra.repository;
|
package com.baeldung.datastax.cassandra.repository;
|
||||||
|
|
||||||
|
import com.datastax.oss.driver.api.core.CqlIdentifier;
|
||||||
import com.datastax.oss.driver.api.core.CqlSession;
|
import com.datastax.oss.driver.api.core.CqlSession;
|
||||||
|
|
||||||
|
import com.datastax.oss.driver.api.querybuilder.SchemaBuilder;
|
||||||
|
import com.datastax.oss.driver.api.querybuilder.schema.CreateKeyspace;
|
||||||
|
|
||||||
public class KeyspaceRepository {
|
public class KeyspaceRepository {
|
||||||
private final CqlSession session;
|
private final CqlSession session;
|
||||||
|
|
||||||
@ -9,19 +13,15 @@ public class KeyspaceRepository {
|
|||||||
this.session = session;
|
this.session = session;
|
||||||
}
|
}
|
||||||
|
|
||||||
public void createKeyspace(String keyspaceName, String replicationStrategy, int numberOfReplicas) {
|
public void createKeyspace(String keyspaceName, int numberOfReplicas) {
|
||||||
StringBuilder sb = new StringBuilder("CREATE KEYSPACE IF NOT EXISTS ").append(keyspaceName)
|
CreateKeyspace createKeyspace = SchemaBuilder.createKeyspace(keyspaceName)
|
||||||
.append(" WITH replication = {")
|
.ifNotExists()
|
||||||
.append("'class':'").append(replicationStrategy)
|
.withSimpleStrategy(numberOfReplicas);
|
||||||
.append("','replication_factor':").append(numberOfReplicas)
|
|
||||||
.append("};");
|
|
||||||
|
|
||||||
final String query = sb.toString();
|
session.execute(createKeyspace.build());
|
||||||
|
|
||||||
session.execute(query);
|
|
||||||
}
|
}
|
||||||
|
|
||||||
public void useKeyspace(String keyspace) {
|
public void useKeyspace(String keyspace) {
|
||||||
session.execute("USE " + keyspace);
|
session.execute("USE " + CqlIdentifier.fromCql(keyspace));
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|||||||
@ -7,6 +7,12 @@ import com.datastax.oss.driver.api.core.cql.BoundStatement;
|
|||||||
import com.datastax.oss.driver.api.core.cql.PreparedStatement;
|
import com.datastax.oss.driver.api.core.cql.PreparedStatement;
|
||||||
import com.datastax.oss.driver.api.core.cql.ResultSet;
|
import com.datastax.oss.driver.api.core.cql.ResultSet;
|
||||||
import com.datastax.oss.driver.api.core.cql.SimpleStatement;
|
import com.datastax.oss.driver.api.core.cql.SimpleStatement;
|
||||||
|
import com.datastax.oss.driver.api.core.type.DataTypes;
|
||||||
|
import com.datastax.oss.driver.api.querybuilder.QueryBuilder;
|
||||||
|
import com.datastax.oss.driver.api.querybuilder.SchemaBuilder;
|
||||||
|
import com.datastax.oss.driver.api.querybuilder.insert.RegularInsert;
|
||||||
|
import com.datastax.oss.driver.api.querybuilder.schema.CreateTable;
|
||||||
|
import com.datastax.oss.driver.api.querybuilder.select.Select;
|
||||||
|
|
||||||
import java.util.ArrayList;
|
import java.util.ArrayList;
|
||||||
import java.util.List;
|
import java.util.List;
|
||||||
@ -27,15 +33,12 @@ public class VideoRepository {
|
|||||||
}
|
}
|
||||||
|
|
||||||
public void createTable(String keyspace) {
|
public void createTable(String keyspace) {
|
||||||
StringBuilder sb = new StringBuilder("CREATE TABLE IF NOT EXISTS ").append(TABLE_NAME).append(" (")
|
CreateTable createTable = SchemaBuilder.createTable(TABLE_NAME).ifNotExists()
|
||||||
.append("video_id UUID,")
|
.withPartitionKey("video_id", DataTypes.UUID)
|
||||||
.append("title TEXT,")
|
.withColumn("title", DataTypes.TEXT)
|
||||||
.append("creation_date TIMESTAMP,")
|
.withColumn("creation_date", DataTypes.TIMESTAMP);
|
||||||
.append("PRIMARY KEY(video_id));");
|
|
||||||
|
|
||||||
String query = sb.toString();
|
executeStatement(createTable.build(), keyspace);
|
||||||
|
|
||||||
executeStatement(SimpleStatement.newInstance(query), keyspace);
|
|
||||||
}
|
}
|
||||||
|
|
||||||
public UUID insertVideo(Video video) {
|
public UUID insertVideo(Video video) {
|
||||||
@ -47,17 +50,23 @@ public class VideoRepository {
|
|||||||
|
|
||||||
video.setId(videoId);
|
video.setId(videoId);
|
||||||
|
|
||||||
String absoluteTableName = keyspace != null ? keyspace + "." + TABLE_NAME: TABLE_NAME;
|
RegularInsert insertInto = QueryBuilder.insertInto(TABLE_NAME)
|
||||||
|
.value("video_id", QueryBuilder.bindMarker())
|
||||||
|
.value("title", QueryBuilder.bindMarker())
|
||||||
|
.value("creation_date", QueryBuilder.bindMarker());
|
||||||
|
|
||||||
StringBuilder sb = new StringBuilder("INSERT INTO ").append(absoluteTableName)
|
SimpleStatement insertStatement = insertInto.build();
|
||||||
.append("(video_id, title, creation_date) values (:video_id, :title, :creation_date)");
|
|
||||||
|
|
||||||
PreparedStatement preparedStatement = session.prepare(sb.toString());
|
if (keyspace != null) {
|
||||||
|
insertStatement = insertStatement.setKeyspace(keyspace);
|
||||||
|
}
|
||||||
|
|
||||||
|
PreparedStatement preparedStatement = session.prepare(insertStatement);
|
||||||
|
|
||||||
BoundStatement statement = preparedStatement.bind()
|
BoundStatement statement = preparedStatement.bind()
|
||||||
.setUuid("video_id", video.getId())
|
.setUuid(0, video.getId())
|
||||||
.setString("title", video.getTitle())
|
.setString(1, video.getTitle())
|
||||||
.setInstant("creation_date", video.getCreationDate());
|
.setInstant(2, video.getCreationDate());
|
||||||
|
|
||||||
session.execute(statement);
|
session.execute(statement);
|
||||||
|
|
||||||
@ -69,11 +78,9 @@ public class VideoRepository {
|
|||||||
}
|
}
|
||||||
|
|
||||||
public List<Video> selectAll(String keyspace) {
|
public List<Video> selectAll(String keyspace) {
|
||||||
StringBuilder sb = new StringBuilder("SELECT * FROM ").append(TABLE_NAME);
|
Select select = QueryBuilder.selectFrom(TABLE_NAME).all();
|
||||||
|
|
||||||
String query = sb.toString();
|
ResultSet resultSet = executeStatement(select.build(), keyspace);
|
||||||
|
|
||||||
ResultSet resultSet = executeStatement(SimpleStatement.newInstance(query), keyspace);
|
|
||||||
|
|
||||||
List<Video> result = new ArrayList<>();
|
List<Video> result = new ArrayList<>();
|
||||||
|
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user