WeSign/back-end
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Add input validation to register

Browse Source
This commit is contained in:
lvrossem
2023-04-06 14:26:07 -06:00
parent 5e91bc7ef6
commit d3a29a4b29
1 changed files with 6 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
src/crud/authentication.py
View File

@@ -49,8 +49,12 @@ def authenticate_user(db: Session, username: str, password: str):
def register(db: Session, username: str, password: str, avatar: str): def register(db: Session, username: str, password: str, avatar: str):
"""Register a new user""" """Register a new user"""
if avatar == "": if len(avatar) == 0:
raise HTTPException(status_code=400, detail="No avatar was provided") raise HTTPException(status_code=400, detail="No avatar was provided")
if len(username) == 0:
raise HTTPException(status_code=400, detail="No username was provided")
if len(password) == 0:
raise HTTPException(status_code=400, detail="No password was provided")
db_user = get_user_by_username(db, username) db_user = get_user_by_username(db, username)
if db_user: if db_user:
raise HTTPException(status_code=400, detail="Username already registered") raise HTTPException(status_code=400, detail="Username already registered")
@@ -64,6 +68,7 @@ def register(db: Session, username: str, password: str, avatar: str):
def login(db: Session, username: str, password: str): def login(db: Session, username: str, password: str):
"""Log in based on username and password; supply access token if succeeded"""
user = authenticate_user(db, username, password) user = authenticate_user(db, username, password)
if not user: if not user:
raise HTTPException(status_code=401, detail="Invalid username or password") raise HTTPException(status_code=401, detail="Invalid username or password")