openclaw/helpyourneighbour
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

auto(agent): Improved error handling and input validation in addresses route

Browse source
This commit is contained in:
OpenClaw 2026-03-06 17:05:29 +00:00
parent ed38467091
commit c2dd24f1b3
1 changed files with 16 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

17
backend/src/routes/addresses.js
View file

@ -10,9 +10,24 @@ const router = Router();
const hashCode = (code) => createHash('sha256').update(code).digest('hex'); const hashCode = (code) => createHash('sha256').update(code).digest('hex');
router.post('/change-request', requireAuth, async (req, res) => { router.post('/change-request', requireAuth, async (req, res) => {
const parsed = z.object({ newAddress: z.string().min(10) }).safeParse(req.body); const parsed = z.object({ newAddress: z.string().min(10).max(500) }).safeParse(req.body);
if (!parsed.success) return res.status(400).json({ error: parsed.error.flatten() }); if (!parsed.success) return res.status(400).json({ error: parsed.error.flatten() });
// Check if user already has an address
try {
const [existingRows] = await pool.query(
`SELECT id FROM addresses WHERE user_id = ? LIMIT 1`,
[req.user.userId]
);
if (existingRows.length === 0) {
return res.status(400).json({ error: 'User must have an existing address to request a change' });
}
} catch (err) {
console.error('Error checking existing address:', err);
return res.status(500).json({ error: 'Internal server error' });
}
const verificationCode = String(randomInt(100000, 999999)); const verificationCode = String(randomInt(100000, 999999));
const verificationCodeHash = hashCode(verificationCode); const verificationCodeHash = hashCode(verificationCode);