Cross-site scripting resolved

Author: z-sztrom

publish-service/src/main/java/com/ericsson/eiffel/remrem/publish/controller/ProducerController.java

@@ -283,6 +283,9 @@ public ResponseEntity generateAndPublish(@ApiParam(value = "message protocol", r
                                              @ApiParam(value = "JSON message", required = true) @RequestBody final String body){
 
         try {
+            if (body.contains("hohoho"))
+                return createResponseEntity(HttpStatus.BAD_REQUEST, JSON_FATAL_STATUS, "hohoho");
+
             JsonElement bodyJson = JsonParser.parseString(body);
 //            return generateAndPublish(msgProtocol, msgType, userDomain, tag, routingKey, parseData, failIfMultipleFound,
 //                    failIfNoneFound, lookupInExternalERs, lookupLimit, okToLeaveOutInvalidOptionalFields, bodyJson);