From 20b86f81e783a88bc35b2387f28f8928aae4b730 Mon Sep 17 00:00:00 2001
From: Ville Brofeldt <33317356+villebro@users.noreply.github.com>
Date: Fri, 4 Jun 2021 06:43:07 +0300
Subject: [PATCH] fix(filter box): replace freeform where clause with ilike
 (#14900)

---
 .../src/visualizations/FilterBox/FilterBox.jsx            | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/superset-frontend/src/visualizations/FilterBox/FilterBox.jsx b/superset-frontend/src/visualizations/FilterBox/FilterBox.jsx
index d90781ba05..8a5a867fd3 100644
--- a/superset-frontend/src/visualizations/FilterBox/FilterBox.jsx
+++ b/superset-frontend/src/visualizations/FilterBox/FilterBox.jsx
@@ -223,10 +223,10 @@ class FilterBox extends React.PureComponent {
         ? [
             {
               clause: 'WHERE',
-              comparator: null,
-              expressionType: 'SQL',
-              // TODO: Evaluate SQL Injection risk
-              sqlExpression: `lower(${key}) like '%${input}%'`,
+              expressionType: 'SIMPLE',
+              subject: key,
+              operator: 'ILIKE',
+              comparator: `%${input}%`,
             },
           ]
         : null,