fix: added the validation for no SQL injection in connection DTO

Signed-off-by: KulkarniShashank <[email protected]>
credebl · Apr 18, 2024 · da26cd2 · da26cd2
1 parent a815bd6
commit da26cd2
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/apps/api-gateway/src/connection/dtos/connection.dto.ts b/apps/api-gateway/src/connection/dtos/connection.dto.ts
@@ -8,12 +8,10 @@ import { IsNotSQLInjection } from '@credebl/common/cast.helper';
 export class CreateOutOfBandConnectionInvitation {
         @ApiPropertyOptional()
         @IsOptional()
-        @IsNotSQLInjection({ message: 'label is required.' })
         label?: string;
 
         @ApiPropertyOptional()
         @IsOptional()
-        @IsNotSQLInjection({ message: 'alias is required.' })
         alias?: string;
 
         @ApiPropertyOptional()
@@ -64,12 +62,14 @@ export class CreateConnectionDto {
     @IsOptional()
     @IsString({ message: 'alias must be a string' })
     @IsNotEmpty({ message: 'please provide valid alias' })
+    @IsNotSQLInjection({ message: 'alias is required.' })
     alias: string;
 
     @ApiPropertyOptional()
     @IsOptional()
     @IsString({ message: 'label must be a string' })
     @IsNotEmpty({ message: 'please provide valid label' })
+    @IsNotSQLInjection({ message: 'label is required.' })
     label: string;
 
     @ApiPropertyOptional()