No verification for RouterIPAddress entry

Question

No verification for RouterIPAddress entry

N0ne1eft opened this issue 5 years ago · comments

The /api/team/create method is allowing any string value for routerIPAddress. Although verification can be added in other micro services before http request being sent I suggest adding database side verification would be better.

No error was reported in the database side log

info: Microsoft.EntityFrameworkCore.Database.Command[20101]
      Executed DbCommand (1ms) [Parameters=[@p0='?' (DbType = Int32), @p1='?', @p2='?' (DbType = Int32)], CommandType='Text', CommandTimeout='30']
      INSERT INTO "Configs" ("ConnectionType", "RouterIpAddress", "RouterPort")
      VALUES (@p0, @p1, @p2)
      RETURNING "Id";

Gherman · Answer 1 · Sun Dec 29 2019 21:46:17 GMT+0800 (China Standard Time)

To be fixed

Gherman · Answer 2 · Mon Jan 13 2020 18:16:56 GMT+0800 (China Standard Time)

has been solved in b81a7af