From 07d0a637ddaecc645cf6eb1e86b9750d871f9719 Mon Sep 17 00:00:00 2001 From: codacydemo <49029689+codacydemo@users.noreply.github.com> Date: Wed, 13 Nov 2019 17:12:55 +0000 Subject: [PATCH] Create DummyClass.java --- .../java/org/owasp/webgoat/DummyClass.java | 50 +++++++++++++++++++ 1 file changed, 50 insertions(+) create mode 100644 webgoat-server/src/main/java/org/owasp/webgoat/DummyClass.java diff --git a/webgoat-server/src/main/java/org/owasp/webgoat/DummyClass.java b/webgoat-server/src/main/java/org/owasp/webgoat/DummyClass.java new file mode 100644 index 0000000000..933cbf48c2 --- /dev/null +++ b/webgoat-server/src/main/java/org/owasp/webgoat/DummyClass.java @@ -0,0 +1,50 @@ +package org.owasp.webgoat; + +import javax.ws.rs.GET; +import javax.ws.rs.Path; +import javax.ws.rs.Produces; +import javax.ws.rs.QueryParam; +import javax.ws.rs.core.MediaType; +import java.util.concurrent.atomic.AtomicLong; + +import java.sql.*; +import java.util.Properties; +import java.util.concurrent.Executor; +import java.util.Map; + + +public class DummyClass { + private final String template; + private final String defaultName; + private final AtomicLong counter; + + public DummyClass(String template, String defaultName) { + this.template = template; + this.defaultName = defaultName; + this.counter = new AtomicLong(); + } + + public void sayHello(String name) { + final String value = String.format(template, name); + } + + public Connection generateConnection(){ + //TODO: implement a connection method + return null; + } + + public double add(int x, int y){ + return (double) x+y; + } + + public void TestSQLInjection(Integer userId, String password){ + Connection connection = generateConnection(); + try{ + String query = "SELECT * FROM users WHERE userid ='"+ userId + "'" + " AND password='" + password + "'"; + Statement stmt = connection.createStatement(); + ResultSet rs = stmt.executeQuery(query); + }catch(Exception ex){ + ex.printStackTrace(); + } + } +}