Mobile Technologies Web Technologies Digital Marketing Creative Design Career Talk Medical General Tech Interviews Internet Of Things

Embark on a journey of knowledge! Take the quiz and earn valuable credits.

Take A Quiz

Challenge yourself and boost your learning! Start the quiz now to earn credits.

Take A Quiz

Unlock your potential! Begin the quiz, answer questions, and accumulate credits along the way.

Take A Quiz

Popular Categories

Interview Questions
QuestionBank
Quantitative Aptitude
Engineering
Govt Exams
Digital Marketing
Management
Interviews
All

MongoDB Node JS escaping single quote problems

General Tech Bugs & Fixes 2 years ago

0 2 0 0 0 tuteeHUB earn credit +10 pts
5 Star Rating 1 Rating
Previous Next

Posted on 16 Aug 2022, this text provides information on Bugs & Fixes related to General Tech. Please note that while accuracy is prioritized, the data presented might not be entirely correct or up-to-date. This information is offered for general knowledge and informational purposes only, and should not be considered as a substitute for professional advice.

Take Quiz To Earn Credits!

Turn Your Knowledge into Earnings.

tuteehub_quiz

Answers (2)

Post Answer
profilepic.png
manpreet Tuteehub forum best answer Best Answer 2 years ago

 

In my Node js, I have escaped single quote with the below function

var regescape = function(text) {
return text.replace(/[\[\]']+/g, "\\$&"); 
};

This is working fine for me. But suddenly I discovered I have a string M'$ in my database. Which is not returning with my below query.

param 1 = "M'$";

var cursor = db.collection('search').find({"searchcontent.name":new RegExp('^'+regescape(param1))}).limit(10);

Also Please suggest the best practice for handling Node JS parameter pass to MongoDB. I am calling NodeJS from PHP code. And I am sending parameters with rawurlencode() from PHP code. In node js I'm using decodeURI() to the received parameters.

Edit:

My PHP code for calling Node JS:

function getdetail($data1) {
    $p1 = $data1;
    $service_url = 'http://exampleserver:8081/search?param1='.$p1;
    $curl = curl_init($service_url);
    curl_setopt($curl, CURLOPT_RETURNTRANSFER, true);
    $curl_response = curl_exec($curl);
        if ($curl_response === false) {
        $info = curl_getinfo($curl);
        curl_close($curl);
        die('error occured.Please try later');
        }
    curl_close($curl);
    $decoded = json_decode($curl_response, true);
    if (isset($decoded->response->status) && $decoded->response->status == 'ERROR') {
        die('error occured.Please try later');
    }
    return $decoded;

}

Node JS code to receive data:

app.get('/search', function (req, res) {
    var param1=decodeURI(req.query.param1);
    MongoClient.connect(url, function(err, db) {
     assert.equal(null, err);
     search(param1,db, function(data){ db.close(); res.end
0 views
0 shares
profilepic.png
manpreet 2 years ago

The problem is with $ sign. It's a special character and it should be escaped, because normally it means end of input. You have to update regescape function, because it escapes only single quote and square brackets - so you have at least add dollar sign there too.

Also seems like your regescape function does not work as expected in some cases. Try for example to pass this value: test[]'. I think you expect to get test\[\]\', but actually you will get test\[]'

So in order to fix it and add dolar sign - it should be something like this:

var regescape = function(text) {
    return text.replace(/'|\$|\[|\]/g, "\\$&"); 
};

Pipe (|) means or, so it simply escapes any of the symbols from the set. You can easily add more characters there in future.


0 views   0 shares

No matter what stage you're at in your education or career, TuteeHub will help you reach the next level that you're aiming for. Simply,Choose a subject/topic and get started in self-paced practice sessions to improve your knowledge and scores.

Q

What is the full form of NABARD ?

Banking, Finance & Insurance
Q

How to refresh app upon shaking the device?

Mobile Technologies
Q

What are the govt exams after BCA?

Career Talk
Q

TYPO3 v8. Override function in Core class

General Tech
Q

Why do people in India give so much importance to Government jobs?

Commerce & Accounting
Q

<div>zkskKsk</div>

Mobile Technologies 0 Answers
Q

<span style="font-size: 1em;">Qwerty 4</span>

Digital Marketing 0 Answers
Q

<div>What are the key differences between AMOLED and LCD displays in smartphones?</div>

Mobile Technologies 0 Answers
Q

<div>What are the key challenges in Mobile App Development for Cross-Platform Solutions?</div>

Mobile Technologies 0 Answers
Q

who is the smallest man in the world

General Tech 0 Answers

Explore Other Libraries

Blogs Tutorials Question Bank Feeds Careernews

Tags

MongoDB Node JS single quote problems

Important General Tech Links

 Bugs & Fixes
 Technology & Software
 Learning Aids/Tools
 QA/Testing