ensure client_id is specified in authorize post

author: Puyodead1 <puyodead@proton.me> 2023-12-09 13:39:40 -0500
committer: Puyodead1 <puyodead@proton.me> 2023-12-09 13:39:40 -0500
commit: 9d266f1dbaa76043d56a9514d7c36c7073d15cbb (patch)
tree: cdf5e5cddaff4451941bd910fc349b07b0629006
parent: ensure client_id is provided in authorize (diff)
download: server-9d266f1dbaa76043d56a9514d7c36c7073d15cbb.tar.xz
1 files changed, 10 insertions, 0 deletions
diff --git a/src/api/routes/oauth2/authorize.ts b/src/api/routes/oauth2/authorize.ts
index f7cec207..2f2351f3 100644
--- a/src/api/routes/oauth2/authorize.ts
+++ b/src/api/routes/oauth2/authorize.ts
@@ -197,6 +197,16 @@ router.post(
 		// const { client_id, scope, response_type, redirect_url } = req.query;
 		const { client_id } = req.query;
 
+		if (!client_id) {
+			throw FieldErrors({
+				client_id: {
+					code: "BASE_TYPE_REQUIRED",
+					message: req.t("common:field.BASE_TYPE_REQUIRED"),
+				},
+			});
+		}
+
+		// TODO: ensure guild_id is not an empty string
 		// TODO: captcha verification
 		// TODO: MFA verification
author	Puyodead1 <puyodead@proton.me>	2023-12-09 13:39:40 -0500
committer	Puyodead1 <puyodead@proton.me>	2023-12-09 13:39:40 -0500
commit	9d266f1dbaa76043d56a9514d7c36c7073d15cbb (patch)
tree	cdf5e5cddaff4451941bd910fc349b07b0629006
parent	ensure client_id is provided in authorize (diff)
download	server-9d266f1dbaa76043d56a9514d7c36c7073d15cbb.tar.xz