summaryrefslogtreecommitdiff
path: root/index.js
diff options
context:
space:
mode:
authorFreeyorp <TheFreeYorp@NOSPAM.G.m.a.i.l.replace>2013-05-13 13:50:36 +1200
committerFreeyorp <TheFreeYorp@NOSPAM.G.m.a.i.l.replace>2013-05-13 13:50:36 +1200
commite0c3142731003bf60851a2827757f0f4b7dc759a (patch)
tree04ae0d86a77c872dcf80489a0a45f155748340d3 /index.js
parent87c39afe86d077f06b9adce5c0759fb932ad02e3 (diff)
downloadmanavis-e0c3142731003bf60851a2827757f0f4b7dc759a.tar.gz
manavis-e0c3142731003bf60851a2827757f0f4b7dc759a.tar.bz2
manavis-e0c3142731003bf60851a2827757f0f4b7dc759a.tar.xz
manavis-e0c3142731003bf60851a2827757f0f4b7dc759a.zip
Validate input in socket callbacks
Diffstat (limited to 'index.js')
-rw-r--r--index.js6
1 files changed, 6 insertions, 0 deletions
diff --git a/index.js b/index.js
index 5b6c74f..2ff58d5 100644
--- a/index.js
+++ b/index.js
@@ -62,6 +62,9 @@ sessionSockets.on('connection', function (err, socket, session) {
socket.emit('users', { users: users });
/* Set up various handlers for the new socket. */
socket.on('nick', function (d) {
+ if (!(typeof(d) == "object" && nick in d)) {
+ return;
+ }
/* TODO Collision checking? */
users[session.nid].nick = session.nick = d.nick;
session.save();
@@ -72,6 +75,9 @@ sessionSockets.on('connection', function (err, socket, session) {
});
});
socket.on('filter', function(d) {
+ if (!(typeof(d) == "object" && filters in d)) {
+ return;
+ }
users[session.nid].filters = d.filters;
logAction("FILTER", d.filters);
socket.broadcast.emit('filterset', {
generated by cgit v1.2.3-60-g2f50 (git 2.42.0) at 2024-05-20 00:27:23 +0000