add checks for ticket lenght and format

2023-10-03 21:31:56 +02:00 · 2023-10-03 21:31:56 +02:00 · a3b7ff3f9f
parent 62833a2bd6
commit a3b7ff3f9f
1 changed files with 5 additions and 1 deletions
--- a/freeriders/routes.py
+++ b/freeriders/routes.py
@ -21,7 +21,11 @@ def submit():
    elif request.method == 'POST':
        timenow = int(time.time())
        ticket_input = request.form['ticket']
-        ticket = Ticket(ticket = ticket_input, timestamp = timenow)
+
+        if ticket_input.isdigit() and len(ticket_input) == 10:
+            ticket = Ticket(ticket = int(ticket_input), timestamp = timenow)
+        else:
+            return 'Ticket format is wrong. Only 10 digits allowed.'

        try:
            db.session.add(ticket)