From ddedc080a28a46b7d9125682a3c990409908b70b Mon Sep 17 00:00:00 2001 From: vantezzen Date: Mon, 26 Aug 2019 10:31:24 +0200 Subject: Add validations --- app/Controllers/Http/WorkspaceController.js | 39 ++++++++++++++++++++++++++++- 1 file changed, 38 insertions(+), 1 deletion(-) (limited to 'app/Controllers/Http/WorkspaceController.js') diff --git a/app/Controllers/Http/WorkspaceController.js b/app/Controllers/Http/WorkspaceController.js index 5573382..3d45893 100644 --- a/app/Controllers/Http/WorkspaceController.js +++ b/app/Controllers/Http/WorkspaceController.js @@ -1,6 +1,10 @@ 'use strict' const Workspace = use('App/Models/Workspace'); +const { + validateAll +} = use('Validator'); + const uuid = require('uuid/v4'); class WorkspaceController { @@ -16,6 +20,17 @@ class WorkspaceController { return response.send('Missing or invalid api token') } + // Validate user input + const validation = await validateAll(request.all(), { + name: 'required|alpha', + }); + if (validation.fails()) { + return response.status(401).send({ + "message": "Invalid POST arguments", + "status": 401 + }) + } + const data = request.all(); // Get new, unused uuid @@ -56,6 +71,18 @@ class WorkspaceController { return response.send('Missing or invalid api token') } + // Validate user input + const validation = await validateAll(request.all(), { + name: 'required|alpha', + services: 'required|array' + }); + if (validation.fails()) { + return response.status(401).send({ + "message": "Invalid POST arguments", + "status": 401 + }) + } + const data = request.all(); const { id @@ -95,7 +122,17 @@ class WorkspaceController { return response.send('Missing or invalid api token') } - const data = request.all(); + // Validate user input + const validation = await validateAll(request.all(), { + id: 'required', + }); + if (validation.fails()) { + return response.status(401).send({ + "message": "Invalid POST arguments", + "status": 401 + }) + } + const { id } = params; -- cgit v1.2.3-54-g00ecf