This looks great numlocked! Excited to give it a whirl.<p>I spend a lot of time writing intranet CRUD apps and these kinds of tools can be really useful to give your users access to the raw data so they can export to csv & do their own analysis in Excel (or whatever their tool of choice).<p>Thanks a bunch for open sourcing it!
This is pretty cool. It's kind of funny how after all the admin interfaces and fancy forms, people always end up wanting to just write their own custom SQL.<p>On the security front, the SQL blacklist definitely has to go. It's a false sense of security (ex: string concat + dynamic execution gets around it). The suggestion to use a read only user is a good one but even better is to use a read only database (ex: a Postgres replication slave).<p>Have you checked out JackDB? (<a href="http://www.jackdb.com/" rel="nofollow">http://www.jackdb.com/</a> <i>full disclosure: I'm the founder</i>) It's a full featured database client that runs entirely in your browser.
Are you able to login as different database users?<p>I would love to try using this with Schemaverse (<a href="http://schemaverse.com" rel="nofollow">http://schemaverse.com</a>) but most frameworks I have seen have trouble with multiple database roles/connections.
Looks interesting, been thinking of implementing one for our product (jvm based). I might consider a port, though not sure how much effort it would take.<p>Thanks!
Hey there HN - over the last few weeks I wrote this Django app to help share data across our start-up (ePantry.com). It's our first significant open source contribution, and I hope some folks find it useful. I'd love to hear your feedback.