tobias/eventmaster
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 4 Wiki Activity

Rewrite database access for exercises

Browse Source
This commit is contained in:
Tobias Zoghaib
2024-11-13 13:56:44 +01:00
parent 24f44e73f4
commit 0911cdbe5c
2 changed files with 56 additions and 54 deletions
Download Patch File Download Diff File Expand all files Collapse all files

48
software/backend/data/exercises.json
View File

@@ -23,10 +23,33 @@
}
]
},
{
"nameDe": "Broken Access Control",
"nameEn": "Broken Access Control",
"groupNr": 1,
"exercises": [
{
"nameDe": "Hilfe-Seite aufrufen",
"nameEn": "Access Help Page",
"exerciseNr": 1,
"descriptionDe": "Manipuliere die URL so, dass du die Hilfe-Seite erreichen kannst",
"descriptionEn": "Manipulate the URL and access the help page",
"solved": false
},
{
"nameDe": "Das ausgebuchte Konzert buchen",
"nameEn": "Book the unavailable concert",
"exerciseNr": 2,
"descriptionDe": "Manipuliere die URL so, dass du das ausgebuchte Konzert aufrufen kannst und buche ein Ticket dafür",
"descriptionEn": "Manipulate the URL and access the sold out concert and buy a ticket",
"solved": false
}
]
},
{
"nameDe": "SQL Injections",
"nameEn": "SQL Injections",
"groupNr": 1,
"groupNr": 2,
"exercises": [
{
"nameDe": "Accountnamen auslesen",
@@ -54,29 +77,6 @@
}
]
},
{
"nameDe": "Broken Access Control",
"nameEn": "Broken Access Control",
"groupNr": 2,
"exercises": [
{
"nameDe": "Admin-Panel aufrufen",
"nameEn": "Access Admin Panel",
"exerciseNr": 1,
"descriptionDe": "Manipuliere die URL so, dass du das Admin-Panel erreichen kannst",
"descriptionEn": "Manipulate the URL and access the admin panel",
"solved": false
},
{
"nameDe": "Das versteckte Konzert buchen",
"nameEn": "Book the hidden concert",
"exerciseNr": 2,
"descriptionDe": "Manipuliere die URL so, dass du das ausgebuchte Konzert aufrufen kannst und buche ein Ticket dafür",
"descriptionEn": "Manipulate the URL and access the sold out concert and buy a ticket",
"solved": false
}
]
},
{
"nameDe": "Cross-Site Scripting (XSS)",
"nameEn": "Cross-Site Scripting (XSS)",

46
software/backend/routes/account.routes.ts
View File

@@ -5,6 +5,7 @@ import { Address } from "../models/user/address.model";
import { Payment } from "../models/user/payment.model";
import { AccountRole } from "../models/user/accountRole.model";
import { Exercise } from "../models/exercises/exercise.model";
import { sequelize } from "../database";
export const account = Router()
@@ -18,21 +19,31 @@ account.get("/", (req: Request, res: Response) => {
})
// Login user
account.post("/login", (req: Request, res: Response) => {
Account.findOne({
where: { username: req.body.username },
include: [ Address, Payment, AccountRole ],
attributes: {
exclude: [
"accountRoleId"
]
account.post("/login", async (req: Request, res: Response) => {
// Using raw SQL code for SQL injections!
// todo: Inner join
const [results, metadata] =
await sequelize.query(
"SELECT * FROM Accounts " +
"INNER JOIN Addresses ON Accounts.id=Addresses.accountId " +
"WHERE (username='" + req.body.username +
"' AND password='" + req.body.password + "')")
// Mechanism to check exercise solved
if (results.length > 1) {
Exercise.update(
{ solved: true },
{
where: {
nameEn: "Register"
}
})
.then(account => {
if (account != null) {
if (account.dataValues.password == req.body.password) {
}
)
}
if (results.length != 0) {
// Status: 200 OK
res.status(200).json(account)
res.status(200).json(results[0])
} else {
// Status: 401 Unauthorized
res.status(401).json({
@@ -40,15 +51,6 @@ account.post("/login", (req: Request, res: Response) => {
message: "Unauthorized"
})
}
} else {
// Status: 400 Bad request
res.status(400).json({
code: 400,
message: "Bad Request"
})
}
}
)
})
// Creating a new user