liz/PluralKit
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Bounds check system details

Browse Source
This commit is contained in:
Ske
2019-07-10 00:21:00 +02:00
parent 9a5152a74c
commit 204404bd8d
1 changed files with 9 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
PluralKit.API/Controllers/SystemController.cs
View File

@@ -7,6 +7,7 @@ using Dapper;
using Microsoft.AspNetCore.Mvc;
using Newtonsoft.Json;
using NodaTime;
using PluralKit.Core;
namespace PluralKit.API.Controllers
{
@@ -104,6 +105,14 @@ namespace PluralKit.API.Controllers
{
var system = _auth.CurrentSystem;
// Bounds checks
if (newSystem.Name.Length > Limits.MaxSystemNameLength)
return BadRequest($"System name too long ({newSystem.Name.Length} > {Limits.MaxSystemNameLength}.");
if (newSystem.Tag.Length > Limits.MaxSystemTagLength)
return BadRequest($"System tag too long ({newSystem.Tag.Length} > {Limits.MaxSystemTagLength}.");
if (newSystem.Description.Length > Limits.MaxDescriptionLength)
return BadRequest($"System description too long ({newSystem.Description.Length} > {Limits.MaxDescriptionLength}.");
system.Name = newSystem.Name;
system.Description = newSystem.Description;
system.Tag = newSystem.Tag;