From a4c619ec6aad97e44d8c6f38e5c510cd7ae66621 Mon Sep 17 00:00:00 2001
From: emkael <emkael@tlen.pl>
Date: Sun, 20 Jan 2019 11:26:21 +0100
Subject: Cutoff parameters sanitation

---
 http/api.php | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

(limited to 'http/api.php')

diff --git a/http/api.php b/http/api.php
index bccd5d3..ab8d002 100644
--- a/http/api.php
+++ b/http/api.php
@@ -127,14 +127,17 @@ function parse_parameters($parameters) {
     if ($return['points_cutoffs'][count($return['points_cutoffs'])-1][1] != 0.0) {
         array_push($return['points_cutoffs'], array(1.0, 0.0));
     }
-    foreach ($return['points_cutoffs'] as $cutoff) {
+    foreach ($return['points_cutoffs'] as &$cutoff) {
         if (($cutoff[0] < 0.0) || ($cutoff[0] > 1.0)) {
             throw new ParametersException('Cutoff points need to be between 0.0 and 1.0: ' . $cutoff[0]);
         }
+        $cutoff[0] = floatval($cutoff[0]);
         if (($cutoff[1] < 0.0) || ($cutoff[1] > 1.0)) {
             throw new ParametersException('Cutoff values need to be between 1.0 and 0.0: ' . $cutoff[1]);
         }
+        $cutoff[1] = floatval($cutoff[1]);
     }
+    unset($cutoff);
     for ($prev = 0; $prev < count($return['points_cutoffs']) - 1; $prev++) {
         $next = $prev + 1;
         if ($return['points_cutoffs'][$prev][0] >= $return['points_cutoffs'][$next][0]) {
-- 
cgit v1.2.3