update _whereIn to throw on invalid types

jmcelreavey · web-flow · commit 17dd2e315afa · 2020-03-09T16:37:30.000Z
Currently if a string is passed into _whereIn it is the object is returned without any issue. This can be misleading. We should throw an exception when the wrong type has been provided.
diff --git a/system/Database/BaseBuilder.php b/system/Database/BaseBuilder.php
@@ -979,14 +979,20 @@ public function orHavingNotIn(string $key = null, $values = null, bool $escape =
 	 * @param string        $type
 	 * @param boolean       $escape
 	 * @param string        $clause (Internal use only)
+	 * @throws InvalidArgumentException
 	 *
 	 * @return BaseBuilder
 	 */
 	protected function _whereIn(string $key = null, $values = null, bool $not = false, string $type = 'AND ', bool $escape = null, string $clause = 'QBWhere')
 	{
-		if ($key === null || $values === null)
+		if (empty($key) || ! is_string($key))
 		{
-			return $this;
+			throw new InvalidArgumentException(sprintf('%s() expects $key to be a non-empty string', debug_backtrace(0, 2)[1]['function']));
+		}
+
+		if ($values === null || (! is_array($values) && ! ($values instanceof Closure)))
+		{
+			throw new InvalidArgumentException(sprintf('%s() expects $values to be of type array or closure', debug_backtrace(0, 2)[1]['function']));
 		}
 
 		is_bool($escape) || $escape = $this->db->protectIdentifiers;

Original file line number	Diff line number	Diff line change
`@@ -979,14 +979,20 @@ public function orHavingNotIn(string $key = null, $values = null, bool $escape =`
`979`	`979`	`* @param string $type`
`980`	`980`	`* @param boolean $escape`
`981`	`981`	`* @param string $clause (Internal use only)`
	`982`	`+ * @throws InvalidArgumentException`
`982`	`983`	`*`
`983`	`984`	`* @return BaseBuilder`
`984`	`985`	`*/`
`985`	`986`	`protected function _whereIn(string $key = null, $values = null, bool $not = false, string $type = 'AND ', bool $escape = null, string $clause = 'QBWhere')`
`986`	`987`	`{`
`987`		`- if ($key === null \|\| $values === null)`
	`988`	`+ if (empty($key) \|\| ! is_string($key))`
`988`	`989`	`{`
`989`		`- return $this;`
	`990`	`+ throw new InvalidArgumentException(sprintf('%s() expects $key to be a non-empty string', debug_backtrace(0, 2)[1]['function']));`
	`991`	`+ }`
	`992`	`+`
	`993`	`+ if ($values === null \|\| (! is_array($values) && ! ($values instanceof Closure)))`
	`994`	`+ {`
	`995`	`+ throw new InvalidArgumentException(sprintf('%s() expects $values to be of type array or closure', debug_backtrace(0, 2)[1]['function']));`
`990`	`996`	`}`
`991`	`997`
`992`	`998`	`is_bool($escape) \|\| $escape = $this->db->protectIdentifiers;`