Update for 28-02-22 16:15
This commit is contained in:
parent
5650ddb8ac
commit
bfcafab2be
@ -6,8 +6,27 @@ network, with caching and other optimizations.
|
|||||||
== Database Design Principle ==
|
== Database Design Principle ==
|
||||||
|
|
||||||
|
|
||||||
|
== Views ==
|
||||||
|
|
||||||
|
A database view is a subset of a database and is based on a query that runs on
|
||||||
|
one or more database tables. There are essentially named queries.
|
||||||
|
|
||||||
|
=== dynamic views ===
|
||||||
|
|
||||||
|
dynamic views can contain data from one or two tables and automatically include
|
||||||
|
all of the columns from the specified table or tables. They are automatically
|
||||||
|
updated along with data in the source tables
|
||||||
|
|
||||||
|
=== static views ===
|
||||||
|
|
||||||
|
static views contain data from multiple tables and and the columns from said
|
||||||
|
tables are included via SELECT and WHERE commands.
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
== SQL ==
|
== SQL ==
|
||||||
|
|
||||||
See [[../lang/sql]]
|
See [[sql]]
|
||||||
|
|
||||||
[[index]]
|
[[index]]
|
||||||
|
|||||||
@ -3,9 +3,48 @@
|
|||||||
Stuctered Query Language is a language that describes a method of fetching and
|
Stuctered Query Language is a language that describes a method of fetching and
|
||||||
describing the relationship between different types of data
|
describing the relationship between different types of data
|
||||||
|
|
||||||
|
== Views ==
|
||||||
|
|
||||||
|
A view can be created with the following command
|
||||||
|
|
||||||
|
{{{
|
||||||
|
CREATE VIEW [view_name] AS
|
||||||
|
SELECT column1, column2, ...
|
||||||
|
FROM table
|
||||||
|
WHERE condition;
|
||||||
|
}}}
|
||||||
|
|
||||||
|
For example, this view returns all products witha price higher than the average
|
||||||
|
price of the table
|
||||||
|
|
||||||
|
{{{
|
||||||
|
CREATE VIEW [Products above average price] AS
|
||||||
|
SELECT Name, Price
|
||||||
|
FROM Products
|
||||||
|
WHERE Price > (SELECT AVG(Price) FROM Products)
|
||||||
|
|
||||||
|
SELECT * FROM [Prodcuts above average price]
|
||||||
|
}}}
|
||||||
|
|
||||||
|
== Acess control commands ==
|
||||||
|
|
||||||
|
Two commands for managing access rights
|
||||||
|
|
||||||
|
* grant
|
||||||
|
* used to grant one or more access rights or can be used to assign a user to
|
||||||
|
a role
|
||||||
|
* revoke
|
||||||
|
* revokes the acess rights
|
||||||
|
|
||||||
|
Typical access rights include
|
||||||
|
|
||||||
|
* select
|
||||||
|
* insert update
|
||||||
|
* delete
|
||||||
|
* references
|
||||||
|
|
||||||
== Also see ==
|
== Also see ==
|
||||||
|
|
||||||
[[../tech/databases]]
|
[[databases]]
|
||||||
|
|
||||||
[[../index]]
|
[[index]]
|
||||||
|
|||||||
@ -7,3 +7,9 @@ An attack typically works by prematurely terminating a text string and
|
|||||||
appending a new command. Because the inserted command may have additional
|
appending a new command. Because the inserted command may have additional
|
||||||
strings appended to it before it is executed, SQLI attack string generally end
|
strings appended to it before it is executed, SQLI attack string generally end
|
||||||
with a comment or `--`.
|
with a comment or `--`.
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
== Also see ==
|
||||||
|
|
||||||
|
Also see [[sql]]
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user