joshua-sajeev · joshua-sajeev · Nov 26, 2025 · Nov 26, 2025
diff --git a/docs/LEARNING.md b/docs/LEARNING.md
@@ -1,4 +1,4 @@
-## Date: 2025-11-14
+## Date: 2025-11-24
 ### Password Validation
 
 [OWASP](https://owasp.org/) no longer recommends strict composition rules like:
@@ -9,3 +9,17 @@
 Why?
 
 Because composition rules do NOT significantly improve security and they make passwords harder for users to remember!
+
+
+## Date: 2025-11-25
+```go 
+value := x.(string)
+```
+
+This tells go that we expect x to be a string. 
+
+```go
+str, ok := x.(string)
+```
+
+For failure case we can make use of two variables.
diff --git a/internal/handler/user/user_handler.go b/internal/handler/user/user_handler.go
@@ -137,7 +137,14 @@ func (h *UserHandler) UpdatePassword(c *gin.Context) {
 		return
 	}
 
-	req.ID = userID.(int)
+	val, ok := userID.(int)
+	if !ok {
+		c.JSON(http.StatusBadRequest, common.ErrorResponse{
+			Message: "invalid userID in context",
+		})
+		return
+	}
+	req.ID = val
 
 	resp, err := h.service.UpdatePassword(&req)
 	if err != nil {
@@ -174,7 +181,17 @@ func (h *UserHandler) DeleteUser(c *gin.Context) {
 		return
 	}
 
-	req := dto.DeleteUserRequest{ID: userID.(int)}
+	val, ok := userID.(int)
+	if !ok {
+		c.JSON(http.StatusBadRequest, common.ErrorResponse{
+			Message: "invalid userID in context",
+		})
+		return
+	}
+
+	req := dto.DeleteUserRequest{
+		ID: val,
+	}
 
 	resp, err := h.service.DeleteUser(&req)
 	if err != nil {