我想删除""一个字符串.
例如,如果String是:"I am here"那么我只想输出I am here.
我想使用 Sequelize 进行原始查询并使用替换来避免 sql 注入:
var sequelize = require('sequelize');
sequelize.query("SELECT * FROM table where name =:name ORDER BY :age:direction",
{replacements:{name:"test", age:"age", direction:"desc"}, type: sequelize.QueryTypes.SELECT })
这将转换为以下查询
SELECT *
FROM table
WHERE name = 'test'
ORDER BY 'age' 'desc'
由于按列排序有单引号,方向也有单引号,postgres 抛出错误
谁能建议我如何通过替换就位来解决这个问题?