From 7953c7dbbd85d0786bc5e325fa9a3bc8aa888f89 Mon Sep 17 00:00:00 2001
From: shancheas <irfan.zaelani13@gmail.com>
Date: Thu, 23 Jan 2025 22:15:26 +0700
Subject: [PATCH] fix: validate display uuid

---
 .../item-queue/infrastructure/item-queue-read.controller.ts    | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/src/modules/item-related/item-queue/infrastructure/item-queue-read.controller.ts b/src/modules/item-related/item-queue/infrastructure/item-queue-read.controller.ts
index a73d60f..512f2e1 100644
--- a/src/modules/item-related/item-queue/infrastructure/item-queue-read.controller.ts
+++ b/src/modules/item-related/item-queue/infrastructure/item-queue-read.controller.ts
@@ -13,6 +13,7 @@ import { ItemQueueReadOrchestrator } from '../domain/usecases/item-queue-read.or
 import { ApiBearerAuth, ApiTags } from '@nestjs/swagger';
 import { MODULE_NAME } from 'src/core/strings/constants/module.constants';
 import { Public } from 'src/core/guards';
+import { validate as isValidUUID } from 'uuid';
 
 @ApiTags(`${MODULE_NAME.ITEM_QUEUE.split('-').join(' ')} - read`)
 @Controller(`v1/${MODULE_NAME.ITEM_QUEUE}`)
@@ -50,7 +51,7 @@ export class ItemQueueReadController {
   @Get('display/:id')
   @Public(true)
   async detailPublic(@Param('id') id: string): Promise<ItemQueueEntity> {
-    if (!id) throw new UnauthorizedException('id is required');
+    if (!isValidUUID(id)) throw new UnauthorizedException('id is required');
     return await this.orchestrator.detail(id);
   }
 }