Merge pull request #7244 from nupplaphil/task/hidden_string

Introduce HiddenString for Config-Values
2025-05-02 05:04:24 +02:00 · 2019-06-10 10:50:41 -04:00 · 2019-06-10 10:50:41 -04:00 · 151c026a8a
commit 151c026a8a
parent 165607ffe7 50d8dbb123
6 changed files with 161 additions and 24 deletions
--- a/src/Core/Config/Cache/ConfigCache.php
+++ b/src/Core/Config/Cache/ConfigCache.php
@ -2,6 +2,8 @@

 namespace Friendica\Core\Config\Cache;

+use ParagonIE\HiddenString\HiddenString;
+
 /**
 * The Friendica config cache for the application
 * Initial, all *.config.php files are loaded into this cache with the
@ -15,10 +17,17 @@ class ConfigCache implements IConfigCache, IPConfigCache
 	private $config;

 	/**
-	 * @param array $config    A initial config array
+	 * @var bool
 	 */
-	public function __construct(array $config = [])
+	private $hidePasswordOutput;
+
+	/**
+	 * @param array $config    A initial config array
+	 * @param bool  $hidePasswordOutput True, if cache variables should take extra care of password values
+	 */
+	public function __construct(array $config = [], $hidePasswordOutput = true)
 	{
+		$this->hidePasswordOutput = $hidePasswordOutput;
 		$this->load($config);
 	}

@ -84,8 +93,13 @@ class ConfigCache implements IConfigCache, IPConfigCache
 			$this->config[$cat] = [];
 		}

-		$this->config[$cat][$key] = $value;
-
+		if ($this->hidePasswordOutput &&
+		    $key == 'password' &&
+		    !empty($value) && is_string($value)) {
+			$this->config[$cat][$key] = new HiddenString((string) $value);
+		} else {
+			$this->config[$cat][$key] = $value;
+		}
 		return true;
 	}

--- a/src/Core/Config/Configuration.php
+++ b/src/Core/Config/Configuration.php
@ -88,7 +88,7 @@ class Configuration

 			if (isset($dbvalue)) {
 				$this->configCache->set($cat, $key, $dbvalue);
-				return $dbvalue;
+				unset($dbvalue);
 			}
 		}