darkhelm/notifications-api
1
0
Fork 0
mirror of https://github.com/GSA/notifications-api.git synced 2025-12-17 18:52:30 -05:00
Code Issues Packages Projects Releases Wiki Activity

more input checking

Browse Source
This commit is contained in:
Kenneth Kehl
2025-06-26 10:35:46 -07:00
parent 3e93d6c9c6
commit 58a8b51f59
16 changed files with 214 additions and 86 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
app/provider_details/rest.py
View File

@@ -9,6 +9,7 @@ from app.dao.provider_details_dao import (
from app.dao.users_dao import get_user_by_id
from app.errors import InvalidRequest, register_errors
from app.schemas import provider_details_history_schema, provider_details_schema
from app.utils import check_suspicious_id
provider_details = Blueprint("provider_details", __name__)
register_errors(provider_details)
@@ -38,12 +39,14 @@ def get_providers():
@provider_details.route("/<uuid:provider_details_id>", methods=["GET"])
def get_provider_by_id(provider_details_id):
check_suspicious_id(provider_details_id)
data = provider_details_schema.dump(get_provider_details_by_id(provider_details_id))
return jsonify(provider_details=data)
@provider_details.route("/<uuid:provider_details_id>/versions", methods=["GET"])
def get_provider_versions(provider_details_id):
check_suspicious_id(provider_details_id)
versions = dao_get_provider_versions(provider_details_id)
data = provider_details_history_schema.dump(versions, many=True)
return jsonify(data=data)
@@ -51,6 +54,7 @@ def get_provider_versions(provider_details_id):
@provider_details.route("/<uuid:provider_details_id>", methods=["POST"])
def update_provider_details(provider_details_id):
check_suspicious_id(provider_details_id)
valid_keys = {"priority", "created_by", "active"}
req_json = request.get_json()