package com.ots.common.utils.sql;
import com.ots.common.utils.StringUtils;

public class SqlUtil {
    
    public static String SQL_PATTERN = "[a-zA-Z0-9_\\ \\,]+";
    
    public static String escapeOrderBySql(String value) {
        if (StringUtils.isNotEmpty(value) && !isValidOrderBySql(value)) {
            return StringUtils.EMPTY;
        }
        return value;
    }
    
    public static boolean isValidOrderBySql(String value) {
        return value.matches(SQL_PATTERN);
    }
}