diff options
author | Florian Pritz <bluewind@xinu.at> | 2012-07-12 01:34:51 +0200 |
---|---|---|
committer | Florian Pritz <bluewind@xinu.at> | 2012-07-12 01:36:42 +0200 |
commit | faef9c8dd3bbd9403881982f57bee4342d5c39e3 (patch) | |
tree | ba5d728b6070f343f09a288ef579822c0b7c55df | |
parent | 221b58a8d91e779e4be184257da857c36a0b87e3 (diff) |
Explicitly select fields in db queries
Signed-off-by: Florian Pritz <bluewind@xinu.at>
-rw-r--r-- | application/controllers/user.php | 2 | ||||
-rw-r--r-- | application/models/muser.php | 2 |
2 files changed, 2 insertions, 2 deletions
diff --git a/application/controllers/user.php b/application/controllers/user.php index 29d9eaeeb..d9a549ae6 100644 --- a/application/controllers/user.php +++ b/application/controllers/user.php @@ -101,7 +101,7 @@ class User extends CI_Controller { $userid = $this->muser->get_userid(); $query = $this->db->query(" - SELECT * + SELECT `key` FROM invitations WHERE user = ? ", array($userid))->result_array(); diff --git a/application/models/muser.php b/application/models/muser.php index d123c8701..8ec4de4c5 100644 --- a/application/models/muser.php +++ b/application/models/muser.php @@ -17,7 +17,7 @@ class Muser extends CI_Model { function login($username, $password) { $query = $this->db->query(' - SELECT * + SELECT username, id, password FROM `users` WHERE `username` = ? ', array($username))->row_array(); |