photoprism/pkg/sanitize/sanitize.go

44 lines
1.2 KiB
Go
Raw Normal View History

/*
Package sanitize provides input value sanitation functions
Copyright (c) 2018 - 2022 Michael Mayer <hello@photoprism.app>
This program is free software: you can redistribute it and/or modify
it under Version 3 of the GNU Affero General Public License (the "AGPL"):
<https://docs.photoprism.app/license/agpl>
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU Affero General Public License for more details.
The AGPL is supplemented by our Trademark and Brand Guidelines,
which describe how our Brand Assets may be used:
<https://photoprism.app/trademark>
Feel free to send an e-mail to hello@photoprism.app if you have questions,
want to support our work, or just want to say hello.
Additional information can be found in our Developer Guide:
https://docs.photoprism.app/developer-guide/
*/
package sanitize
import "strings"
const MaxLength = 4096
func reject(s string, maxLength int) bool {
if maxLength > 0 && len(s) > maxLength {
return true
}
if strings.Contains(s, "${") || strings.Contains(s, "ldap://") {
return true
}
return false
}