mirror of
https://github.com/FreshRSS/FreshRSS.git
synced 2026-01-02 10:27:48 -05:00
075cf4c800
* API avoid logging passwords * Strip passwords and tokens from API logs * Only log failed requests information when in debug mode * Remove debug SHA * Clean also Apache logs * Better comments * Redact also token parameters * shfmt * Simplify whitespace * redacted
10 lines
511 B
Bash
Executable File
10 lines
511 B
Bash
Executable File
#!/bin/sh
|
|
# Strips sensitive passwords from (Apache) logs
|
|
|
|
# For e.g. GNU systems such as Debian
|
|
# N.B.: `sed -u` is not available in BusyBox and without it there are buffering delays (even with stdbuf)
|
|
sed -Eu 's/([?&])(Passwd|token)=[^& \t]+/\1\2=redacted/ig' 2>/dev/null ||
|
|
|
|
# For systems with gawk (not available by default in Docker of Debian or Alpine) or with BuzyBox such as Alpine
|
|
$(which gawk || which awk) -v IGNORECASE=1 '{ print gensub(/([?&])(Passwd|token)=[^& \t]+/, "\\1\\2=redacted", "g") }'
|