github
/
portainer
mirror of https://github.com/portainer/portainer
1
0
Fork 0
Code Issues Releases Wiki Activity

fix(api): filter sensitive information from API response (#2103)

pull/2117/head
Anthony Lapenna 2018-07-31 11:50:04 +02:00 committed by GitHub
parent b8ed6d3d4a
commit 5f79547138
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
3 changed files with 10 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
api/http/handler/endpoints/endpoint_list.go
View File

@ -27,8 +27,9 @@ func (handler *Handler) endpointList(w http.ResponseWriter, r *http.Request) *ht
filteredEndpoints := security.FilterEndpoints(endpoints, endpointGroups, securityContext)
for _, endpoint := range filteredEndpoints {
hideFields(&endpoint)
for idx := range filteredEndpoints {
hideFields(&filteredEndpoints[idx])
}
return response.JSON(w, filteredEndpoints)
}

7
api/http/handler/registries/registry_list.go
View File

@ -22,8 +22,9 @@ func (handler *Handler) registryList(w http.ResponseWriter, r *http.Request) *ht
filteredRegistries := security.FilterRegistries(registries, securityContext)
for _, registry := range filteredRegistries {
hideFields(&registry)
for idx := range filteredRegistries {
hideFields(&filteredRegistries[idx])
}
return response.JSON(w, registries)
return response.JSON(w, filteredRegistries)
}

5
api/http/handler/users/user_list.go
View File

@ -22,8 +22,9 @@ func (handler *Handler) userList(w http.ResponseWriter, r *http.Request) *httper
filteredUsers := security.FilterUsers(users, securityContext)
for _, user := range filteredUsers {
hideFields(&user)
for idx := range filteredUsers {
hideFields(&filteredUsers[idx])
}
return response.JSON(w, filteredUsers)
}