From f8967fa33772343a5a226cffe363cd89451e3cb4 Mon Sep 17 00:00:00 2001 From: Mikhail Trofimov Date: Fri, 15 Aug 2025 11:05:47 +0300 Subject: [PATCH] Added extra check for userId --- .../credit_tracker/service/scoring/AuthorizationService.java | 3 +++ 1 file changed, 3 insertions(+) diff --git a/src/main/java/ru/nbch/credit_tracker/service/scoring/AuthorizationService.java b/src/main/java/ru/nbch/credit_tracker/service/scoring/AuthorizationService.java index 7c3f1f0..428de8a 100644 --- a/src/main/java/ru/nbch/credit_tracker/service/scoring/AuthorizationService.java +++ b/src/main/java/ru/nbch/credit_tracker/service/scoring/AuthorizationService.java @@ -26,6 +26,9 @@ public class AuthorizationService { } public AuthResult findAuthInfo(String userId, String password) throws Exception { + if (userId.length() > 12) { + return new AuthResult(false, SignalError.ERROR_005); + } String hashedPassword = hashPassword(password); List productCodes = mapper.findUserProductCodes(userId, hashedPassword); if (productCodes.isEmpty()) {