Safer author add logic

2021-03-12 09:46:28 -08:00
parent 28db3e2733
commit b42c761b0b
2 changed files with 8 additions and 2 deletions
--- a/bookwyrm/views/books.py
+++ b/bookwyrm/views/books.py
@ -133,6 +133,8 @@ class EditBook(View):
            data["add_author"] = add_author
            data["author_matches"] = []
            for author in add_author.split(","):
+                if not author:
+                    continue
                # check for existing authors
                vector = SearchVector("name", weight="A") + SearchVector(
                    "aliases", weight="B"
@ -200,6 +202,8 @@ class ConfirmEditBook(View):
            # get or create author as needed
            if request.POST.get("add_author"):
                for (i, author) in enumerate(request.POST.get("add_author").split(",")):
+                    if not author:
+                        continue
                    match = request.POST.get("author_match-%d" % i)
                    if match and match != "0":
                        author = get_object_or_404(