Mantis Bug Tracker - Forums


https://mantisbt.org/forums/

REST API vs SQL INJECTION

https://mantisbt.org/forums/viewtopic.php?t=26120

Page 1 of 1

REST API vs SQL INJECTION

Posted: 04 Feb 2019, 16:50
by Joterini
Hi,

Quick question, if i`m using rest api and php to create issuses, should i santitize data before send to api or mantis do this on his own? Does mantis use PDO or something similar?

Thanks!

Re: REST API vs SQL INJECTION

Posted: 05 Feb 2019, 12:53
by tookei
IMO, REST API should do the job. If you go for SQL Injection, you would need to clean your data

Re: REST API vs SQL INJECTION

Posted: 06 Dec 2019, 05:04
by vboctor
You shouldn’t sanitize the data. This will be handled by REST APi. You should just make sure they are sending valid requests with valid JSON.

Thanks,
-Victor
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited