From b8655da70d36c4fbf9f24e0f80b87358b0845de0 Mon Sep 17 00:00:00 2001
From: sumanvpacewisdom <suman.v@pacewisdom.com>
Date: Thu, 14 Mar 2024 16:17:55 +0530
Subject: [PATCH 1/2] security changes

---
 src/middlewares/pagination.js | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/src/middlewares/pagination.js b/src/middlewares/pagination.js
index 002694b16..951abef2b 100644
--- a/src/middlewares/pagination.js
+++ b/src/middlewares/pagination.js
@@ -12,12 +12,12 @@ function containsSpecialChars(str) {
 	return specialChars.test(str)
 }
 module.exports = (req, res, next) => {
+	const searchData = req.query.search
 	req.pageNo = req.query.page && Number(req.query.page) > 0 ? Number(req.query.page) : 1
-
 	req.pageSize =
 		req.query.limit && Number(req.query.limit) > 0 && Number(req.query.limit) <= 100 ? Number(req.query.limit) : 100
-
-	req.searchText = req.query.search && req.query.search != '' ? decodeURI(req.query.search) : ''
+	req.searchText =
+		searchData && typeof searchData === 'string' && searchData.trim() !== '' ? decodeURI(searchData) : ''
 	/* let buff = new Buffer(req.searchText, 'base64')
 	req.searchText = buff.toString('ascii') */
 	if (containsSpecialChars(req.searchText)) {

From fbc866c990ab8afdb5b073631a512e5a4422a61f Mon Sep 17 00:00:00 2001
From: sumanvpacewisdom <suman.v@pacewisdom.com>
Date: Thu, 14 Mar 2024 18:00:14 +0530
Subject: [PATCH 2/2] Deleting mentors controller

---
 src/controllers/v1/mentors.js | 31 -------------------------------
 1 file changed, 31 deletions(-)
 delete mode 100644 src/controllers/v1/mentors.js

diff --git a/src/controllers/v1/mentors.js b/src/controllers/v1/mentors.js
deleted file mode 100644
index 033d51534..000000000
--- a/src/controllers/v1/mentors.js
+++ /dev/null
@@ -1,31 +0,0 @@
-/**
- * name : mentors.js
- * author : Aman
- * created-date : 10-Nov-2021
- * Description : User mentors
- */
-
-// Dependencies
-const mentorsService = require('@services/mentors')
-module.exports = class Mentors {
-	/**
-	 * List of mentors
-	 * @method
-	 * @name list
-	 * @param {Object} req -request data.
-	 * @param {string} req.pageNo -page number.
-	 * @param {string} req.pageSize -request data.
-	 * @param {string} req.searchText - search text.
-	 * @returns {Array} - Mentors
-	 */
-
-	async list(req) {
-		const userId = req.decodedToken._id
-		try {
-			const mentors = await mentorsService.list(req.pageNo, req.pageSize, req.searchText, userId, req.query.match)
-			return mentors
-		} catch (error) {
-			return error
-		}
-	}
-}