mvdevsunion/WPetition
1
0
Fork 0
mirror of https://github.com/MvDevsUnion/WPetition.git synced 2026-01-26 15:29:28 +00:00
Code Issues Packages Projects Releases Wiki Activity

added SVG validation

Browse Source
This commit is contained in:
fISHIE
2026-01-21 13:25:45 +05:00
parent 37e6b642ae
commit e90bd63321
2 changed files with 174 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
Submission.Api/Controllers/SignController.cs
View File

@@ -1,7 +1,5 @@
using Ashi.MongoInterface.Service;
using Microsoft.AspNetCore.Mvc;
using Microsoft.AspNetCore.Hosting;
using Microsoft.Extensions.Hosting;
using Microsoft.AspNetCore.RateLimiting;
using Microsoft.Extensions.Caching.Memory;
using Microsoft.Extensions.Options;
@@ -54,7 +52,6 @@ namespace Submission.Api.Controllers
if (validation.Success)
{
//why??
var cacheKey = $"petition_{petition_id}";
var pet = await _detailRepository.FindByIdAsync(petition_id);
@@ -62,9 +59,11 @@ namespace Submission.Api.Controllers
if (pet == null)
return NotFound();
//TODO : add svg validation
//fuck i still havent done this
// SVG validation: reject bad/malicious SVGs before persisting
if (!Submission.Api.Services.SvgValidator.TryValidate(body.Signature, out var svgError))
{
return BadRequest($"Invalid signature SVG: {svgError}");
}
//check to see if the same person signed the petition already
//if dupe send error saying user already signed