joe/kami-parse-server
Public Access
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Validate username password type when logging in, and validate email when reseting password (#2679)

Browse Source 
* Validate username password type when logging in, and validate email when reset password

* Add test for validation
This commit is contained in:
BAm Wang
2016-09-10 00:24:33 +09:00
committed by Florent Vilmart
parent eb1cfcf351
commit 58a2ee32fa
2 changed files with 103 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
src/Routers/UsersRouter.js
View File

@@ -79,6 +79,9 @@ export class UsersRouter extends ClassesRouter {
if (!req.body.password) {
throw new Parse.Error(Parse.Error.PASSWORD_MISSING, 'password is required.');
}
if (typeof req.body.username !== 'string' || typeof req.body.password !== 'string') {
throw new Parse.Error(Parse.Error.OBJECT_NOT_FOUND, 'Invalid username/password.');
}
let user;
let isValidPassword = false;
@@ -190,6 +193,9 @@ export class UsersRouter extends ClassesRouter {
if (!email) {
throw new Parse.Error(Parse.Error.EMAIL_MISSING, "you must provide an email");
}
if (typeof email !== 'string') {
throw new Parse.Error(Parse.Error.INVALID_EMAIL_ADDRESS, 'you must provide a valid email string');
}
let userController = req.config.userController;
return userController.sendPasswordResetEmail(email).then(token => {
return Promise.resolve({