Invalid SQL RuntimeException

networknt / light-oauth2

A fast, light and cloud native OAuth 2.0 authorization microservices based on light-4j

Apache License 2.0

313 stars 75 forks source link

Invalid SQL RuntimeException #382

Open tomasantunes opened 9 months ago

tomasantunes commented 9 months ago

When I insert a semi-colon on the email field I get an Invalid SQL error on oauth2-user:2.0.28. This happened when a user tried to register with two emails separated by a semi-colon. The expected behaviour would be to validate the email.

11:27:32.026 [XNIO-1 task-1]  HXFj-gcrRCmHauoes_75ZQ ERROR c.n.exception.ExceptionHandler handleRequest - Exception:
java.lang.RuntimeException: Invalid SQL: [email = user1@email.com; user2@email.com]

stevehu commented 9 months ago

This is an issue. I will add a validation in the handler. Thanks a lot for raising it.