summaryrefslogtreecommitdiff
path: root/server/providers/services/chat_room.service.ts
diff options
context:
space:
mode:
Diffstat (limited to 'server/providers/services/chat_room.service.ts')
-rw-r--r--server/providers/services/chat_room.service.ts5
1 files changed, 3 insertions, 2 deletions
diff --git a/server/providers/services/chat_room.service.ts b/server/providers/services/chat_room.service.ts
index a6af023..ed75ba4 100644
--- a/server/providers/services/chat_room.service.ts
+++ b/server/providers/services/chat_room.service.ts
@@ -18,9 +18,10 @@ export class ChatRoomService {
return this.chatRoomRepository.find();
}
- near({ lat, lng }: { lat: number; lng: number }) {
+ nearOrUserOwns({ lat, lng, userId }: { lat: number; lng: number; userId: number }) {
+ // SQL injection maybe?
return this.chatRoomRepository.query(
- `SELECT * FROM chat_room WHERE calculate_distance(latitude, longitude, ${lat}, ${lng}, 'M') < 5`,
+ `SELECT * FROM chat_room WHERE calculate_distance(latitude, longitude, ${lat}, ${lng}, 'M') < 5 OR "userId" = ${userId}`,
);
}
generated by cgit v1.2.3-70-g09d2 (git 2.46.0) at 2025-09-20 20:45:39 +0000