mirrors/Tachidesk
1
0
Fork 0
mirror of https://github.com/Suwayomi/Tachidesk.git synced 2025-12-10 06:42:07 +01:00
Code Issues Projects Releases Wiki Activity

Fix/logging user sensitive config data in cleartext (#1634)

Browse Source 
* Redact username and passwords from config log

* Redact empty username and password

* Make regex Username/Password case-insensitive in config redaction
This commit is contained in:
schroda
2025-09-10 00:14:21 +02:00
committed by GitHub
parent 2b767eb488
commit 3df0106325
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
server/src/main/kotlin/suwayomi/tachidesk/server/ServerSetup.kt
View File

@@ -223,8 +223,8 @@ fun applicationSetup() {
.root()
.render(ConfigRenderOptions.concise().setFormatted(true))
.replace(
Regex("(\"(?:basicAuth|auth)(?:Username|Password)\"\\s:\\s)(?!\"\")\".*\""),
"$1\"******\"",
Regex("(\".*(?i:username|password).*\"\\s:\\s)\".*\""),
"$1\"[REDACTED]\"",
)
}