yul/bookwyrm-mastodon
1
1
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Make sure passwords aren't exposed in error reporting

Browse Source
This commit is contained in:
Mouse Reeve
2021-09-07 13:21:40 -07:00
parent 75cc2ee164
commit ec501dfee9
2 changed files with 8 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
bookwyrm/views/register.py
View File

@ -3,8 +3,9 @@ from django.contrib.auth import login
from django.core.exceptions import PermissionDenied
from django.shortcuts import get_object_or_404, redirect
from django.template.response import TemplateResponse
from django.views.decorators.http import require_POST
from django.views import View
from django.views.decorators.http import require_POST
from django.views.decorators.debug import sensitive_variables, sensitive_post_parameters
from bookwyrm import emailing, forms, models
from bookwyrm.settings import DOMAIN
@ -14,6 +15,8 @@ from bookwyrm.settings import DOMAIN
class Register(View):
"""register a user"""
@sensitive_variables("password")
@sensitive_post_parameters("password")
def post(self, request):
"""join the server"""
settings = models.SiteSettings.get()