Sanitize/Validate name field (#20)

* escape name * add email pydantic validation (API) * format prettier * don't allow slash on email also * make regex const * use string literals * make get ticket a POST * email regex Co-authored-by: Vlad Stan <stan.v.vlad@gmail.com>
2024-01-26 14:30:14 +00:00 · 2024-01-26 14:30:14 +00:00 · f468183631
commit f468183631
parent 5e391a04bc
4 changed files with 252 additions and 82 deletions
--- a/views_api.py
+++ b/views_api.py
@ -28,7 +28,7 @@ from .crud import (
    set_ticket_paid,
    update_event,
 )
-from .models import CreateEvent
+from .models import CreateEvent, CreateTicket

 # Events

@ -101,6 +101,13 @@ async def api_tickets(
    return [ticket.dict() for ticket in await get_tickets(wallet_ids)]


+@events_ext.post("/api/v1/tickets/{event_id}")
+async def api_ticket_create(event_id: str, data: CreateTicket):
+    name = data.name
+    email = data.email
+    return await api_ticket_make_ticket(event_id, name, email)
+
+
@events_ext.get("/api/v1/tickets/{event_id}/{name}/{email}")
 async def api_ticket_make_ticket(event_id, name, email):
    event = await get_event(event_id)