From 2d6cda1aef3d0024e21a3eececfbfc7e30d7d939 Mon Sep 17 00:00:00 2001
From: EETagent <vojta.jungmann@gmail.com>
Date: Tue, 17 Jan 2023 16:42:14 +0100
Subject: [PATCH] feat: disable dompurify for non string & number types

---
 frontend/src/lib/@api/candidate.ts | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/frontend/src/lib/@api/candidate.ts b/frontend/src/lib/@api/candidate.ts
index f9f057a..2b9da43 100644
--- a/frontend/src/lib/@api/candidate.ts
+++ b/frontend/src/lib/@api/candidate.ts
@@ -85,8 +85,9 @@ export const apiLogin = async (data: CandidateLogin): Promise<number> => {
 export const apiFillDetails = async (data: CandidateData): Promise<CandidateData> => {
 	// Sanitize candidate data
 	Object.keys(data.candidate).forEach((key) => {
-		// TODO: Enable DOMPurify onyl on string & number types
-		if (key === "grades") return;
+		// eslint-disable-next-line @typescript-eslint/ban-ts-comment
+		// @ts-ignore
+		if (typeof data.candidate[key] !== 'string' && typeof data.candidate[key] !== 'number') return;
 		// eslint-disable-next-line @typescript-eslint/ban-ts-comment
 		// @ts-ignore
 		data.candidate[key] = DOMPurify.sanitize(data.candidate[key]);