Backend Vulnerabilities fixed || added Input validation , password hashing and many more, Read & Know more:

[Shubhashish-Chakraborty]

Below is the Notion Doc, Check it out, Find more details and SCREENSHOTS there:

Click Here for Screenshots & all Contributing Details

Fixes Which ive done:

• Imported the bcrypt and zod dependencies:
• Implemented Input validation in all the necessary endpoints using zod
• Implemented: Hashed password is being stored in the database.
• Code properly Error Handled using try catch block in neccessary spots
• Assigining the admins/users a JWT token and VIA Proper hased password comparing
• modified the course updating route in api/v1/admin/

BIg Vulnerabilities Fixes:

• In the updating course endpoint it should first EXPLICITILY CHECK THAT WHETHER THAT COURSE IS PRESENT FOR THAT PARTICULAR ADMIN OR NOT IN THE DATABASE!
• in the course purchase endpoint first of all we have to check that whether that course is available or not in the database!!!, and WE've to prevent the user to buy a course twice.

Go to the Notion DOC for screenshots and also Better understanding: (Will keep on updating the notion doc!)

Notion Doc

Contributed to this repo LIVE ON YOUTUBE, Do Check it out, link is given below:

YT Channel: ShubhDEVs
LIve Link: Watch Here

Connect with the Contributor

Contributed by Shubhashish Chakraborty

For any queries, reach out via email at [email protected].