Sanitize url for printing when given password passed as parameter

Signed-off-by: AlexDHoffer <alexdchoffer@gmail.com>
2025-04-07 17:51:33 +00:00 · 2022-08-18 16:27:19 -07:00 · 2022-08-18 16:27:19 -07:00 · 04e73d413c
commit 04e73d413c
parent c84fc4a13a
1 changed files with 9 additions and 0 deletions
--- a/cmd/postgres_exporter/util.go
+++ b/cmd/postgres_exporter/util.go
@ -217,5 +217,14 @@ func loggableDSN(dsn string) string {
 		pDSN.User = url.UserPassword(pDSN.User.Username(), "PASSWORD_REMOVED")
 	}

+	// Blank password data from parameters if not nil
+	q := pDSN.Query()
+	if q != nil {
+		if q.Get("password") != "" {
+			q.Set("password", "PASSWORD_REMOVED")
+			pDSN.RawQuery = q.Encode()
+		}
+	}
+
 	return pDSN.String()
 }