yawaflua/SpCloudCore
1
0
Fork 0
mirror of https://github.com/yawaflua/SpCloudCore.git synced 2025-12-09 20:19:35 +02:00
Code Issues Packages Projects Releases Wiki Activity

gfdgfdgfdfg

Browse Source
This commit is contained in:
Hepatica
2024-08-30 01:57:41 +02:00
parent b3817088ca
commit 2b3bffd7db
1 changed files with 31 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

31
SpCloudMain/SpCloudMain.cpp
View File

@@ -23,6 +23,12 @@ int main()
svr.Get("/ping", [&](const httplib::Request& req, httplib::Response& res) svr.Get("/ping", [&](const httplib::Request& req, httplib::Response& res)
{ {
std::regex bash_injection_pattern(R"([;&|<>`$\\])");
if (std::regex_search(req.body, bash_injection_pattern)) {
return;
}
std::cout << "Ping-\n"; std::cout << "Ping-\n";
logger.log(INFO, "App was pinged."); logger.log(INFO, "App was pinged.");
@@ -46,6 +52,12 @@ int main()
svr.Post("/publish", [&](const httplib::Request& req, httplib::Response& res) svr.Post("/publish", [&](const httplib::Request& req, httplib::Response& res)
{ {
std::regex bash_injection_pattern(R"([;&|<>`$\\])");
if (std::regex_search(req.body, bash_injection_pattern)) {
return;
}
logger.log(INFO, "Start publish from main"); logger.log(INFO, "Start publish from main");
std::string user_id = req.get_file_value("UserId").content; std::string user_id = req.get_file_value("UserId").content;
@@ -96,6 +108,12 @@ int main()
svr.Put("/update", [&](const httplib::Request& req, httplib::Response& res) svr.Put("/update", [&](const httplib::Request& req, httplib::Response& res)
{ {
std::regex bash_injection_pattern(R"([;&|<>`$\\])");
if (std::regex_search(req.body, bash_injection_pattern)) {
return;
}
logger.log(INFO, "Start updating app"); logger.log(INFO, "Start updating app");
std::string user_id = req.get_file_value("UserId").content; std::string user_id = req.get_file_value("UserId").content;
@@ -140,6 +158,12 @@ int main()
svr.Delete("/delete", [&](const httplib::Request& req, httplib::Response& res) svr.Delete("/delete", [&](const httplib::Request& req, httplib::Response& res)
{ {
std::regex bash_injection_pattern(R"([;&|<>`$\\])");
if (std::regex_search(req.body, bash_injection_pattern)) {
return;
}
logger.log(INFO, "Start updating app"); logger.log(INFO, "Start updating app");
std::string user_id = req.get_file_value("UserId").content; std::string user_id = req.get_file_value("UserId").content;
@@ -188,6 +212,13 @@ int main()
svr.Get("/apps", [&](const httplib::Request& req, httplib::Response& res) svr.Get("/apps", [&](const httplib::Request& req, httplib::Response& res)
{ {
std::regex bash_injection_pattern(R"([;&|<>`$\\])");
if (std::regex_search(req.body, bash_injection_pattern)) {
return;
}
std::string authorization_token = req.get_header_value("Authorization"); std::string authorization_token = req.get_header_value("Authorization");
string is_user_banned = mongo_service.is_user_banned(authorization_token); string is_user_banned = mongo_service.is_user_banned(authorization_token);