Detect if write queries are possible and show an ugly warning message

simonw / django-sql-dashboard

Django app for building dashboards using raw SQL queries

https://django-sql-dashboard.datasette.io/

Apache License 2.0

437 stars 37 forks source link

Detect if write queries are possible and show an ugly warning message #145

Open simonw opened 3 years ago

simonw commented 3 years ago

https://twitter.com/getluky/status/1424941270221266946

These are all great recommendations and would definitely help! Even better would be if the tool could programmatically detect or warn of unsafe configurations...

simonw commented 3 years ago

One way this could work is to attempt a harmless UPDATE against a small table - maybe one created specially for that purpose. If no error, either show a warning or disable the tool entirely.