Discussion
Loading...
![export const addUser = (connection)=>{
router.post('/api/data/add/user', (req, res)=>{
const data = req.body;
connection.query(
'INSERT INTO usertable (FirstName, LastName, Username, AccessCode, UserEmail) VALUES (?,?,?,?,?)',
[data.FirstName, data.LastName, data.Username, data.AccessCode, data.UserEmail],
(err, results)=>{
if(err){
console.error(err);
res.status(500).json({error: 'Database insertion (User) failed'});,→
return; }
res.json({ success: true, id: results.insertId});
})
})
return router;
}](https://storage.googleapis.com/hci-social-storage/media_attachments/files/115/705/822/541/082/441/original/b40a9e8b62dc0d82.png)
@floe actually this one could be safe. They use the ? operator and a list, so depending on the implementation this probably passes the values as parameters, which is fine.
