Closed noahshaw11 closed 3 years ago
When deleting part of the customer UUID from the URL, I am given access to a non-functional scanner and cart. It is better to redirect the user to an "Invalid customer URL" page or similar. I am also able to access a similar page by going to https://blakeedwards.me/EZBagWebapp/#/customer/d6cd51222d4ee16cd02054b8b446d1dfe23612175f6b367f16e149f7981b4835/receipt outside of the checkout process.
https://user-images.githubusercontent.com/47468872/114335665-3d4fe300-9b1b-11eb-9aef-c324283127a3.mp4
When deleting part of the customer UUID from the URL, I am given access to a non-functional scanner and cart. It is better to redirect the user to an "Invalid customer URL" page or similar. I am also able to access a similar page by going to https://blakeedwards.me/EZBagWebapp/#/customer/d6cd51222d4ee16cd02054b8b446d1dfe23612175f6b367f16e149f7981b4835/receipt outside of the checkout process.
https://user-images.githubusercontent.com/47468872/114335665-3d4fe300-9b1b-11eb-9aef-c324283127a3.mp4