From 714ff9d62a5ca251c492d4903318711160ad41f7 Mon Sep 17 00:00:00 2001
From: Vladislav Lyshenko <vladdnepr1989@gmail.com>
Date: Thu, 4 Jul 2024 12:45:52 +0300
Subject: [PATCH] Restrict to send JSON request as string (object expected)

---
 src/Request/Parser.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Request/Parser.php b/src/Request/Parser.php
index 7ff1200a1..8f3ebca0e 100644
--- a/src/Request/Parser.php
+++ b/src/Request/Parser.php
@@ -54,7 +54,7 @@ private function getParsedBody(Request $request): array
 
                 $parsedBody = json_decode($body, true);
 
-                if (JSON_ERROR_NONE !== json_last_error()) {
+                if (JSON_ERROR_NONE !== json_last_error() || is_string($parsedBody)) {
                     throw new BadRequestHttpException('POST body sent invalid JSON');
                 }
                 break;