From 8f8b884430d29e30688becf4bc38e48014a25851 Mon Sep 17 00:00:00 2001
From: Erik Johnston <erik@matrix.org>
Date: Fri, 8 Jan 2016 17:48:08 +0000
Subject: [PATCH] Don't log urlencoded access_tokens

---
 synapse/app/homeserver.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/synapse/app/homeserver.py b/synapse/app/homeserver.py
index 58a4c812f6..bafac884a3 100755
--- a/synapse/app/homeserver.py
+++ b/synapse/app/homeserver.py
@@ -496,8 +496,8 @@ class SynapseRequest(Request):
 
     def get_redacted_uri(self):
         return re.sub(
-            r'(\?.*access_token=)[^&]*(.*)$',
-            r'\1<redacted>\2',
+            r'(\?.*accesss(_|%5[Ff])token=)[^&]*(.*)$',
+            r'\1<redacted>\3',
             self.uri
         )