ETA/ETAApi
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: validate attachment key name

Browse Source
This commit is contained in:
Josepablo C.
2023-10-07 16:30:39 -06:00
parent 964a94eec8
commit 54387add66
1 changed files with 5 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
sections/load-attachments/services.js
View File

@@ -126,6 +126,8 @@ const postLoadingAttachment = async(req, res) => {
if( attachment && file ){ if( attachment && file ){
const s3resp = await uploadFile( s3Bucket, s3BucketKey, file , attachment._id ); const s3resp = await uploadFile( s3Bucket, s3BucketKey, file , attachment._id );
res.send( attachment ); res.send( attachment );
}else if( !file ){
res.status(400).send({ error : "attachment file not found" , code: 400 });
}else{ }else{
res.status(401).send({error:"Unauthorized",code:401}); res.status(401).send({error:"Unauthorized",code:401});
} }
@@ -135,9 +137,11 @@ const postDownloadingAttachment = async(req, res) => {
const loadId = req.params.id; const loadId = req.params.id;
const attachment = await createLoadAttachment( "Downloading", req.JWT.payload.sub , loadId ); const attachment = await createLoadAttachment( "Downloading", req.JWT.payload.sub , loadId );
const file = req.files.attachment; const file = req.files.attachment;
if( attachment ){ if( attachment && file ){
const s3resp = await uploadFile( s3Bucket, s3BucketKey, file , attachment._id ); const s3resp = await uploadFile( s3Bucket, s3BucketKey, file , attachment._id );
res.send( attachment ); res.send( attachment );
}else if( !file ){
res.status(400).send({ error : "attachment file not found" , code: 400 });
}else{ }else{
res.status(401).send({error:"Unauthorized",code:401}); res.status(401).send({error:"Unauthorized",code:401});
} }