From 88173ae02f2b2ce806d8c838ff1a6df4de286730 Mon Sep 17 00:00:00 2001
From: Johan LACHENAL <Johan.LACHENAL@etu.uca.fr>
Date: Mon, 21 Nov 2022 18:36:27 +0100
Subject: [PATCH 1/2] Ajout de la validation du pseudo dans validation

---
 WEB/Config/Validation.php | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/WEB/Config/Validation.php b/WEB/Config/Validation.php
index 2fe55341..49a0d99c 100644
--- a/WEB/Config/Validation.php
+++ b/WEB/Config/Validation.php
@@ -29,4 +29,11 @@ class Validation
         }
         return true;
     }
+    public function ValidateUsername(string $username) : bool{
+        if(!filter_var($username,FILTER_VALIDATE_REGEXP,array("options" => array( "regexp" => "^[^&=_'\-+;<>.]{1,18}$" ))))
+        {
+            return false;
+        }
+        return true;
+    }
 }

From a86acffb4b6460492b9bc3d9eaa62dfa3da801cc Mon Sep 17 00:00:00 2001
From: Johan LACHENAL <Johan.LACHENAL@etu.uca.fr>
Date: Mon, 21 Nov 2022 18:41:16 +0100
Subject: [PATCH 2/2] =?UTF-8?q?m=C3=A9thode=20log=20ctrl=20+=20longueur=20?=
 =?UTF-8?q?mdp=20bdd?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 Bd/bd.sql                     | 4 ++--
 WEB/Controller/Controller.php | 5 ++++-
 2 files changed, 6 insertions(+), 3 deletions(-)

diff --git a/Bd/bd.sql b/Bd/bd.sql
index cd8c92e2..41998372 100644
--- a/Bd/bd.sql
+++ b/Bd/bd.sql
@@ -4,7 +4,7 @@ DROP TABLE
 CREATE TABLE Admin(
 email varchar(50) PRIMARY KEY,
 pseudo varchar(50),
-mdp varchar(50)
+mdp varchar(500)
 );
 
 CREATE TABLE Enigme(
@@ -22,7 +22,7 @@ CREATE TABLE Joueur(
 email varchar(50) PRIMARY KEY,
 enigmeEnCours varchar(50) REFERENCES Enigme(idEnigme),
 pseudo varchar(50),
-mdp varchar(50)
+mdp varchar(500)
 );
 
 CREATE TABLE Partie(
diff --git a/WEB/Controller/Controller.php b/WEB/Controller/Controller.php
index 7a567f43..97399bb5 100644
--- a/WEB/Controller/Controller.php
+++ b/WEB/Controller/Controller.php
@@ -53,10 +53,13 @@ class Controller
             if (! $validation->ValidateEmail($_REQUEST['email'])) {
                 throw (new Exception("Email non valide"));
             }
+            if(! $validation->ValidateUsername($_REQUEST['username'])){
+                throw(new Exception("Username non valide"));
+            }
             $joueur = new Joueur($_REQUEST['email'], $_REQUEST['username'], $_REQUEST['password']);
             $gateway->insert($joueur);
             $_SESSION['connected'] = 'true';
-            require ($rep.$vues['main']);;
+            require ($rep.$vues['main']);
         }catch (Exception $e){
             require($rep.$vues['erreurSignUp']);
         }