simulacrumparty
/
vlv-search
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Browse Source

Harden

master
Dylan Baker 4 years ago
parent
635fd6d1d4
commit
645d78c8af
1 changed files with 3 additions and 1 deletions
Unified View Show Diff Stats
  1. 3
    1
      web/server.rb

+ 3
- 1
web/server.rb View File

22 
   get '/search' do
 22 
   get '/search' do
23 
     redirect '/login' unless signed_in?
 23 
     redirect '/login' unless signed_in?
24 
     params[:type] = 'threads' unless params[:type]
 24 
     params[:type] = 'threads' unless params[:type]
25 
-    params[:page] = 1 unless params[:page]
25 
+    params[:page] = 1 unless params[:page] && params[:page].match(/\d+/)
26 
     params[:page] = params[:page].to_i
 26 
     params[:page] = params[:page].to_i
27 
+    params[:q] = String.new unless params[:q]
28 
+    params[:username] = String.new unless params[:username]
27
29
28 
     results = search(params)
 30 
     results = search(params)
29 
     previous_url, next_url = build_urls(params)
 31 
     previous_url, next_url = build_urls(params)

Write Preview
Loading…
Cancel
Save