# HG changeset patch
# User HIROSE Yuuji <yuuji@gentei.org>
# Date 1592728870 -32400
# Node ID 87f72984f3aa832a7abd058f30ebd7265803d723
# Parent  476a70f667cf341e91056870199bb4490fb92607
Make it double sure to quote user string

diff -r 476a70f667cf -r 87f72984f3aa s4-funcs.sh
--- a/s4-funcs.sh	Sun Jun 21 16:44:11 2020 +0900
+++ b/s4-funcs.sh	Sun Jun 21 17:41:10 2020 +0900
@@ -2449,10 +2449,10 @@
   if [ -n "$2" ]; then
     kwd=`echo $2 | tr -d '";\n' | tr -d "'"`
     case "$kwd" in
-      mem:*)
+      mem:*@*)
 	byuser=${kwd#*mem:}
-	cond1="(a.gname IN (SELECT gname FROM grp_mem WHERE user='$byuser'))"
-	err cond1=$cond1
+	qusr=`sqlquote "$ustr"`
+	cond1="(a.gname IN (SELECT gname FROM grp_mem WHERE user=$qusr))"
 	;;
     esac
     if [ x"$1" = x"group" ]; then