From 3834590c5a49a54316fae3dcc462255bdbc1ae18 Mon Sep 17 00:00:00 2001 From: Alexander Polynomdivision Date: Mon, 8 Oct 2018 11:22:13 +0200 Subject: [PATCH] fix: Prevent registration spamming --- backend/src/main.ts | 13 +++++++++++++ 1 file changed, 13 insertions(+) diff --git a/backend/src/main.ts b/backend/src/main.ts index 288d34c..cd87e63 100644 --- a/backend/src/main.ts +++ b/backend/src/main.ts @@ -119,6 +119,19 @@ const password = encodeURIComponent(env["LATEINICUS_USER_PW"]); const { username, password, classId } = req.body; + // Check if the registration is open for the class Id + // NOTE: Thiis to prevent people from spamming the database + const classes = env["LATEINICUS_CLASSES"].split(","); + if (classes.indexOf(classId) !== -1) { + res.send({ + error: "403", + data: { + msg: "Class does not exist", + }, + }); + return; + } + // TODO: Check if the username is profane // if (profanityFilter.isProfane(username)) { // res.send({