shihaam/akaunting
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

disabled sqli middleware

Browse Source
This commit is contained in:
Denis Duliçi 2021-07-18 17:12:37 +03:00
parent ca98e2c0c5
commit c2fd5c3eaa
6 changed files with 13 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
app/Http/Requests/Common/Contact.php
View File

@ -18,7 +18,13 @@ class Contact extends FormRequest
$logo = 'nullable'; $logo = 'nullable';
$type = $this->request->get('type', 'customer'); $type = $this->request->get('type', 'customer');
$company_id = $this->request->get('company_id');
// @todo must put contact types under a specific array, see category
if (empty(config('type.' . $type))) {
$type = null;
}
$company_id = (int) $this->request->get('company_id');
// Check if store or update // Check if store or update
if ($this->getMethod() == 'PATCH') { if ($this->getMethod() == 'PATCH') {

2
app/Http/Requests/Document/Document.php
View File

@ -41,7 +41,7 @@ class Document extends FormRequest
} }
// Get company id // Get company id
$company_id = $this->request->get('company_id'); $company_id = (int) $this->request->get('company_id');
return [ return [
'type' => 'required|string', 'type' => 'required|string',

4
app/Http/Requests/Portal/Profile.php
View File

@ -17,8 +17,8 @@ class Profile extends FormRequest
$picture = 'nullable'; $picture = 'nullable';
if ($this->request->get('picture', null)) { if ($this->files->get('picture')) {
$picture = 'mimes:' . config('filesystems.mimes') . '|between:0,' . config('filesystems.max_size') * 1024; $picture = 'mimes:' . config('filesystems.mimes') . '|between:0,' . config('filesystems.max_size') * 1024 . '|dimensions:max_width=1000,max_height=1000';
} }
$email = 'required|email|unique:users,email,' . $id . ',id,deleted_at,NULL'; $email = 'required|email|unique:users,email,' . $id . ',id,deleted_at,NULL';

2
app/Http/Requests/Setting/Currency.php
View File

@ -21,7 +21,7 @@ class Currency extends FormRequest
} }
// Get company id // Get company id
$company_id = $this->request->get('company_id'); $company_id = (int) $this->request->get('company_id');
return [ return [
'name' => 'required|string', 'name' => 'required|string',

2
app/Http/Requests/Setting/Tax.php
View File

@ -20,7 +20,7 @@ class Tax extends FormRequest
$id = null; $id = null;
} }
$company_id = $this->request->get('company_id'); $company_id = (int) $this->request->get('company_id');
$type = 'required|string'; $type = 'required|string';

2
config/firewall.php
View File

@ -52,7 +52,7 @@ return [
'firewall.referrer', 'firewall.referrer',
'firewall.rfi', 'firewall.rfi',
'firewall.session', 'firewall.session',
'firewall.sqli', //'firewall.sqli',
'firewall.swear', 'firewall.swear',
'firewall.xss', 'firewall.xss',
//'App\Http\Middleware\YourCustomRule', //'App\Http\Middleware\YourCustomRule',