paulmataruso/zulip
1
0
Fork 0
mirror of https://github.com/zulip/zulip.git synced 2025-10-30 19:43:47 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
dc40549531328fc8606be0f5e45e7ca70c0370b5
zulip/zerver/filters.py
Alex Vandiver 75cf33079a filters: Do not report AVATAR_SALT, or other salts.
2025-03-13 09:36:07 -07:00

40 lines
1.1 KiB
Python
Raw Blame History

import re
from typing import Any
from django.http import HttpRequest
from django.views.debug import SafeExceptionReporterFilter
from typing_extensions import override
class ZulipExceptionReporterFilter(SafeExceptionReporterFilter):
# Add _SALT to the standard list
hidden_settings = re.compile(
r"API|TOKEN|KEY|SECRET|PASS|SIGNATURE|HTTP_COOKIE|_SALT", flags=re.IGNORECASE
)
@override
def get_post_parameters(self, request: HttpRequest | None) -> dict[str, Any]:
post_data = SafeExceptionReporterFilter.get_post_parameters(self, request)
assert isinstance(post_data, dict)
filtered_post = post_data.copy()
filtered_vars = [
"content",
"secret",
"password",
"key",
"api-key",
"subject",
"stream",
"subscriptions",
"to",
"csrfmiddlewaretoken",
"api_key",
"realm_counts",
"installation_counts",
]
for var in filtered_vars:
if var in filtered_post:
filtered_post[var] = "**********"
return filtered_post
Reference in New Issue View Git Blame Copy Permalink