Does the local API run validation on updates?

thgh

7 months ago

I have a form behind a magic link and would like to update some fields, but it seems to accept any input so this could introduce unexpected data if someone were to send rogue requests.

Jarrod
7 months ago
Yes, the local api hits validation. You can see here all of the operations. These run for rest/graphql/local, you can open one of the operations and look for the beforeValidate hook, after that hook fields get validated.

https://github.com/payloadcms/payload/tree/master/src/collections/operations

Open the post

Continue the discussion in Discord

Like what we're doing?
Star us on GitHub!

Star

Connect with the Payload Community on Discord

Discord

online

Can't find what you're looking for?

Get help straight from the Payload team with an Enterprise License.