public void Execute(IInitializeDatabaseCommand command)
{
if (command == null)
{
throw new ArgumentNullException(nameof(command));
}
_sqlWrapper.ExecuteNonQuery(command.ConnectionString, command.Statement);
}
public IActionResult InitializeDatabase(InjectionViewModel injectionViewModel)
{
if (injectionViewModel == null)
{
throw new ArgumentNullException(nameof(injectionViewModel));
}
IInitializeDatabaseCommand initializeDatabaseCommand = CreateInitializeDatabaseCommand(GetConnectionString());
_initializeDatabaseCommandHandler.Execute(initializeDatabaseCommand);
return(View("Index", CreateDefaultInjectionViewModel()));
}
private InjectionViewModel CreateDefaultInjectionViewModel(string lastQueryResult = null)
{
string connectionString = GetConnectionString();
IInitializeDatabaseCommand initializeDatabaseCommand = CreateInitializeDatabaseCommand(connectionString);
return(new InjectionViewModel
{
ConnectionString = connectionString,
InitializeDatabaseStatement = initializeDatabaseCommand.Statement,
AccountFilterWithSqlInjection = "2;UPDATE Accounts SET Salary=Salary*2 WHERE AccountId=2;",
LastQueryResult = lastQueryResult
});
}
