Merge pull request #85 from FultonBrowne/security

Security
FultonBrowne · Feb 16, 2020 · 8cbca6d · 8cbca6d
2 parents 0c947cf + df33748
commit 8cbca6d
Show file tree

Hide file tree

Showing 3 changed files with 3 additions and 0 deletions.
diff --git a/src/main/java/com/andromeda/araserver/iot/NewDevice.kt b/src/main/java/com/andromeda/araserver/iot/NewDevice.kt
@@ -21,6 +21,7 @@ class NewDevice {
             i.startsWith("user=") -> key = i.replace("user=", "")
             else -> throw SecurityException("not a valid set of arguments")
         }
+        if(key.equals("")) throw SecurityException("not a valid user")
         val idDB =key+id
         DevicesDB().getDB(client, key!!, id!!)
         val rm = RegistryManager.createFromConnectionString("HostName=Ara-iot.azure-devices.net;SharedAccessKeyName=registryReadWrite;SharedAccessKey=jCfMMHFTQdud0aBUNy0fzWgmJLEh9T/xe0S4OZ6Xhtg=")

diff --git a/src/main/java/com/andromeda/araserver/pages/UpdateDB.kt b/src/main/java/com/andromeda/araserver/pages/UpdateDB.kt
@@ -55,6 +55,7 @@ class UpdateDB {
             i.startsWith("prop=") -> prop = i.replace("prop=", "")
 
         }
+        if(key.equals("")) throw SecurityException("not a valid user")
         val dbLink = System.getenv("IOTDB")
         val client = DocumentClient("https://ara-account-data.documents.azure.com:443/", dbLink, ConnectionPolicy(), ConsistencyLevel.Session)
         update(client, key!!, id!!, prop!!, newVal)

diff --git a/src/main/java/com/andromeda/araserver/util/NewDoc.kt b/src/main/java/com/andromeda/araserver/util/NewDoc.kt
@@ -24,6 +24,7 @@ class NewDoc {
             i.startsWith("user=") -> key = i.replace("user=", "")
 
         }
+        if(key.equals("")) throw SecurityException("not a valid user")
         val dbLink = System.getenv("IOTDB")
 
         newDoc(key!!, newVal!!, id!!)