photoprism/pkg/sanitize/log.go
Michael Mayer c74fcbf282 People: Show real name instead of uid in logs #1438 #2182
Since caching all subject data proved too complex in the time available,
this implementation uses a simple key/value lookup table to cache
subject names and perform backward searches by uid.
2022-04-04 14:21:43 +02:00

48 lines
799 B
Go

package sanitize
import (
"fmt"
"strings"
)
// Log sanitizes strings created from user input in response to the log4j debacle.
func Log(s string) string {
if s == "" {
return "''"
} else if reject(s, 512) {
return "?"
}
spaces := false
// Remove non-printable and other potentially problematic characters.
s = strings.Map(func(r rune) rune {
if r < 32 {
return -1
}
switch r {
case ' ':
spaces = true
return r
case '`', '"':
return '\''
case '\\', '$', '<', '>', '{', '}':
return '?'
default:
return r
}
}, s)
// Contains spaces?
if spaces {
return fmt.Sprintf("'%s'", s)
}
return s
}
// LogLower sanitizes strings created from user input and converts them to lowercase.
func LogLower(s string) string {
return Log(strings.ToLower(s))
}