rds-lambda-api-gateway-sample-create
// Added to handle injection
const vandium = require( 'vandium' );
var mysql = require('mysql');
exports.handler = vandium.generic()
.handler( (event, context, callback) => {
var connection = mysql.createConnection({
host : '[rds_host]',
user : '[rds_user]',
password : '[rds_password]',
database : '[rds_database]'
});
sql = "INSERT INTO items(name)";
sql = sql + " VALUES(" + connection.escape(event.name) + ")";
connection.query(sql, function (error, results, fields) {
response = {};
response['item_id'] = results.insertId;
response['name'] = event.name;
callback( null, response );
});
}