paulmataruso/zulip
1
0
Fork 0
mirror of https://github.com/zulip/zulip.git synced 2025-11-04 22:13:26 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
44ea8ab973feb9dab937518ce5ecb64bb7402d59
zulip/zephyr/filters.py
Luke Faraone 44ea8ab973 Filter out additional sensitive POST params 
This should really be handled on a per-method basis, but in general we
don't want "password" or "key" to be sent to us for security reasons.

Addresses trac #569.

(imported from commit 1c246fce00f3740977c595641341ee36eb5ed831)
2012-12-19 11:08:24 -05:00

12 lines
512 B
Python
Raw Blame History

from django.views.debug import SafeExceptionReporterFilter
class HumbugExceptionReporterFilter(SafeExceptionReporterFilter):
def get_post_parameters(self, request):
filtered_post = SafeExceptionReporterFilter.get_post_parameters(self, request).copy()
filtered_vars = ['content', 'secret', 'password', 'key', 'api_key', 'subject', 'stream']
for var in filtered_vars:
if var in filtered_post:
filtered_post[var] = '**********'
return filtered_post
Reference in New Issue View Git Blame Copy Permalink