user icon indicating copy to clipboard operation
user copied to clipboard

Published 20 hours ago verified publisher icon microservices-demo

Panic in PostCard middleware

Open ilya-korotya opened this issue 4 years ago • 0 comments

  • Panic
  • If I sent Credit Card form from the front end. With short card number and cvv I will get panic in PostCard middleware.
  • HTTP request for reproducing: Replace 172.18.8.101 with your front-end IP address.
curl 'http://172.18.8.101:30001/cards' \
  -H 'Connection: keep-alive' \
  -H 'Accept: */*' \
  -H 'X-Requested-With: XMLHttpRequest' \
  -H 'User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36' \
  -H 'Content-Type: application/json; charset=UTF-8' \
  -H 'Origin: http://172.18.8.101:30001' \
  -H 'Referer: http://172.18.8.101:30001/basket.html' \
  -H 'Accept-Language: en-US,en;q=0.9,ru-RU;q=0.8,ru;q=0.7' \
  -H 'Cookie: md.sid=s%3AoEWQJlzlgwD2HtBqUJ-1MV5zWihejnE6.5FoM0HWGAwqnr6dUs6JMr92IujZCEietb3EvzDyzkAs; logged_in=oEWQJlzlgwD2HtBqUJ-1MV5zWihejnE6' \
  --data-binary '{"longNum":"asd","expires":"asd","ccv":"asd"}' \
  --compressed \
  --insecure

Unit test:

func TestShortMaskCC(t *testing.T) {
	defer func() {
		if r := recover(); r != nil {
			t.Error("This code will call panic")
		}
	}()
	test1 := "123"
	c := Card{LongNum: test1}
	c.MaskCC()
}

ilya-korotya avatar Nov 25 '20 22:11 ilya-korotya