simple controller: return bad request if no or invalid verification m…

…ode is provided
admin-ch · Jan 31, 2022 · ec775da · ec775da
1 parent 5d524ad
commit ec775da
Showing 1 changed file with 15 additions and 2 deletions.
diff --git a/...admin/bag/covidcertificate/backend/verification/check/ws/controller/SimpleController.java b/...admin/bag/covidcertificate/backend/verification/check/ws/controller/SimpleController.java
@@ -50,6 +50,9 @@ public SimpleController(VerificationService verificationService) {
     @PostMapping("/verify")
     public @ResponseBody SimpleVerificationResponse verify(@RequestBody SimpleControllerPayload hCertPayload) {
         String verificationMode = hCertPayload.getMode();
+        if(!getVerificationModes().contains(verificationMode)){
+            throw new IllegalArgumentException("Invalid or no verification mode provided. Query /modes for currently available modes");
+        }
         final var start = Instant.now();
 
         // Decode hcert
@@ -89,10 +92,20 @@ public SimpleController(VerificationService verificationService) {
     }
 
 
-        @ExceptionHandler(DecodingException.class)
+    @ExceptionHandler(DecodingException.class)
     @ResponseStatus(HttpStatus.BAD_REQUEST)
     public ResponseEntity<String> invalidHCert(DecodingException e) {
         logger.info("Decoding exception thrown: {}", e.getMessage());
         return ResponseEntity.status(HttpStatus.BAD_REQUEST).body(e.getMsg());
     }
-}
+
+    @ExceptionHandler(IllegalArgumentException.class)
+    @ResponseStatus(HttpStatus.BAD_REQUEST)
+    public ResponseEntity<String> invalidMode(IllegalArgumentException e) {
+        logger.info("IllegalArgumentException thrown: {}", e.getMessage());
+        return ResponseEntity.status(HttpStatus.BAD_REQUEST).body(e.getMessage());
+    }
+
+
+}
+