YunoHost/yunohost
1
0
Fork 0
mirror of https://github.com/YunoHost/yunohost.git synced 2024-09-03 20:06:10 +02:00
Code Issues Projects Releases Packages Wiki Activity

Catch pwd, pass and password as patterns for password

Browse source
This commit is contained in:
Alexandre Aubin 2019-06-27 03:16:46 +02:00
parent b26ec9c2fc
commit 6a00aac13a
1 changed files with 3 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
src/yunohost/log.py
View file

@ -308,7 +308,9 @@ class RedactingFormatter(Formatter):
# Wrapping this in a try/except because we don't want this to
# break everything in case it fails miserably for some reason :s
try:
match = re.search(r'(db_pwd|password)=(\S{3,})$', record.strip())
# This matches stuff like db_pwd=the_secret or admin_password=other_secret
# (the secret part being at least 3 chars to avoid catching some lines like just "db_pwd=")
match = re.search(r'(pwd|pass|password)=(\S{3,})$', record.strip())
if match and match.group(2) not in self.data_to_redact:
self.data_to_redact.append(match.group(2))
except Exception as e: