beep
/
backend-webrtc
5
0
Fork 0
Code Issues 2 Pull Requests Releases Activity

Input validation

pull/6/head
Daniel Lim 2019-07-04 05:29:57 +08:00
parent 1c6137af6f
commit 97519ba466
1 changed files with 9 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
main.go
View File

@ -112,6 +112,11 @@ func GetAuth(next httprouter.Handle) httprouter.Handle {
return
}
if client.UserId == "" || client.ClientId == "" {
http.Error(w, http.StatusText(http.StatusBadRequest), http.StatusBadRequest)
return
}
context := context.WithValue(r.Context(), "user", client)
next(w, r.WithContext(context), p)
}
@ -255,6 +260,10 @@ func JoinConversation(w http.ResponseWriter, r *http.Request, p httprouter.Param
user := r.Context().Value("user").(RawClient)
// Get conversation id
conversationId := p.ByName("conversationid")
if conversationId == "" {
http.Error(w, http.StatusText(http.StatusBadRequest), http.StatusBadRequest)
return
}
// Check permissions from backend-permissions
response, err := http.Get(permissionsHost + "/user/" + user.UserId + "/conversation/" + conversationId)