Open STommydx opened 4 years ago
Describe the bug % character is not escaped in LIKE statements in book searching criteria.
%
To Reproduce
{ "Title": "# Book!", "Author": "Author", "Publisher": "Publisher", "Year": "2028" }
GET localhost:8080/BookManagementService/books?token={{token}}&title=%25
Expected behavior 204 No Content
What actually happens 200 OK with the book returned
{ "FoundBooks": 1, "Results": [ { "Title": "# Book!", "Author": "Author", "Publisher": "Publisher", "Year": "2028" } ] }
Describe the bug
%
character is not escaped in LIKE statements in book searching criteria.To Reproduce
%
%
GET localhost:8080/BookManagementService/books?token={{token}}&title=%25
Expected behavior 204 No Content
What actually happens 200 OK with the book returned