eliseuamaro/gnu-social
1
0
Fork 0
forked from GNUsocial/gnu-social
Code Issues Pull Requests Releases Wiki Activity

[CORE] Unset sensitive information from the environment

Browse Source
This commit is contained in:
Bruno Aleixo
2022-01-30 16:39:43 +00:00
parent afd1211852
commit 162b01e2c5
1 changed files with 7 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
public/index.php
View File

@@ -33,6 +33,7 @@ declare(strict_types = 1);
use App\CacheKernel; use App\CacheKernel;
use App\Kernel; use App\Kernel;
use App\Util\Formatting;
use Symfony\Component\ErrorHandler\Debug; use Symfony\Component\ErrorHandler\Debug;
use Symfony\Component\HttpFoundation\Request; use Symfony\Component\HttpFoundation\Request;
@@ -69,6 +70,11 @@ if ('prod' === $kernel->getEnvironment() || isset($_ENV['SOCIAL_USE_CACHE_KERNEL
} }
$request = Request::createFromGlobals(); $request = Request::createFromGlobals();
$_ENV = array_filter(
$_ENV,
fn (string $key) => Formatting::startsWith($key, ['HTTP', 'APP']) && $key !== 'APP_SECRET',
\ARRAY_FILTER_USE_KEY,
);
$response = $kernel->handle($request); $response = $kernel->handle($request);
$response->send(); $response->send();
$kernel->terminate($request, $response); $kernel->terminate($request, $response);