From f7f7491f857b1cba0f79f8b68b41e0ae01498085 Mon Sep 17 00:00:00 2001
From: Pepijn Over <pep@neanderthal-technology.com>
Date: Thu, 20 Mar 2014 01:24:50 +0100
Subject: [PATCH] issue #1: fixing validation of sever fields

---
 .../Server/Controller/ServerController.class.php      | 11 +++++------
 1 file changed, 5 insertions(+), 6 deletions(-)

diff --git a/src/psm/Module/Server/Controller/ServerController.class.php b/src/psm/Module/Server/Controller/ServerController.class.php
index ac62b410..f79a127c 100755
--- a/src/psm/Module/Server/Controller/ServerController.class.php
+++ b/src/psm/Module/Server/Controller/ServerController.class.php
@@ -159,13 +159,12 @@ class ServerController extends AbstractServerController {
 			$clean = array(
 				'label' => strip_tags($_POST['label']),
 				'ip' => strip_tags($_POST['ip']),
-				'port' => strip_tags($_POST['port']),
-				// @todo validate the following values
-				'type' => $_POST['type'],
+				'port' => intval($_POST['port']),
+				'type' => in_array($_POST['type'], array('website', 'service')) ? $_POST['type'] : 'website',
 				'pattern' => $_POST['pattern'],
-				'active' => $_POST['active'],
-				'email' => $_POST['email'],
-				'sms' => $_POST['sms'],
+				'active' => in_array($_POST['active'], array('yes', 'no')) ? $_POST['active'] : 'no',
+				'email' => in_array($_POST['email'], array('yes', 'no')) ? $_POST['email'] : 'no',
+				'sms' => in_array($_POST['sms'], array('yes', 'no')) ? $_POST['sms'] : 'no',
 			);
 
 			// check for edit or add