(inlong) branch master updated: [INLONG-11731][Manager]Fix the problem of Sensitive parameters are bypassed during JDBC verification processing (#11732)

Sat, 08 Feb 2025 20:55:32 -0800 

This is an automated email from the ASF dual-hosted git repository.

dockerzhang pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/inlong.git


The following commit(s) were added to refs/heads/master by this push:
     new 86c893cfd8 [INLONG-11731][Manager]Fix the problem of Sensitive 
parameters are bypassed during JDBC verification processing (#11732)
86c893cfd8 is described below

commit 86c893cfd8f7ba9ffce5d20abef6cd360f502fdf
Author: fuweng11 <76141879+fuwen...@users.noreply.github.com>
AuthorDate: Sun Feb 9 12:55:21 2025 +0800

    [INLONG-11731][Manager]Fix the problem of Sensitive parameters are bypassed 
during JDBC verification processing (#11732)
---
 .../org/apache/inlong/manager/pojo/util/MySQLSensitiveUrlUtils.java | 4 ++--
 .../org/apache/inlong/manager/pojo/sink/mysql/MySQLSinkDTOTest.java | 6 ++++++
 2 files changed, 8 insertions(+), 2 deletions(-)

diff --git 
a/inlong-manager/manager-pojo/src/main/java/org/apache/inlong/manager/pojo/util/MySQLSensitiveUrlUtils.java
 
b/inlong-manager/manager-pojo/src/main/java/org/apache/inlong/manager/pojo/util/MySQLSensitiveUrlUtils.java
index 32655da1fb..54eadbbbc9 100644
--- 
a/inlong-manager/manager-pojo/src/main/java/org/apache/inlong/manager/pojo/util/MySQLSensitiveUrlUtils.java
+++ 
b/inlong-manager/manager-pojo/src/main/java/org/apache/inlong/manager/pojo/util/MySQLSensitiveUrlUtils.java
@@ -119,8 +119,8 @@ public class MySQLSensitiveUrlUtils {
 
     public static String containSensitiveKey(String url) {
         for (String key : SENSITIVE_REPLACE_PARAM_MAP.keySet()) {
-            if (url.contains(key + InlongConstants.EQUAL + "true")
-                    || url.contains(key + InlongConstants.EQUAL + "yes")) {
+            if (StringUtils.containsIgnoreCase(url, key + 
InlongConstants.EQUAL + "true")
+                    || StringUtils.containsIgnoreCase(url, key + 
InlongConstants.EQUAL + "yes")) {
                 return key;
             }
         }
diff --git 
a/inlong-manager/manager-pojo/src/test/java/org/apache/inlong/manager/pojo/sink/mysql/MySQLSinkDTOTest.java
 
b/inlong-manager/manager-pojo/src/test/java/org/apache/inlong/manager/pojo/sink/mysql/MySQLSinkDTOTest.java
index b4805af545..cc8ebf2846 100644
--- 
a/inlong-manager/manager-pojo/src/test/java/org/apache/inlong/manager/pojo/sink/mysql/MySQLSinkDTOTest.java
+++ 
b/inlong-manager/manager-pojo/src/test/java/org/apache/inlong/manager/pojo/sink/mysql/MySQLSinkDTOTest.java
@@ -31,6 +31,12 @@ public class MySQLSinkDTOTest {
     public void testFilterSensitive() throws Exception {
         // the sensitive params no use url code
         String originUrl = MySQLSinkDTO.filterSensitive(
+                
"jdbc:mysql://127.0.0.1,(allowLoadLocalInfile=yeſ,allowUrlInLocalInfile=yeſ,allowLoadLocalInfileInPath=.,maxAllowedPacket=655360),:3307/test");
+        Assertions.assertEquals(
+                
"jdbc:mysql://127.0.0.1,(,,allowLoadLocalInfileInPath=.,maxAllowedPacket=655360),:3307/test",
+                originUrl);
+
+        originUrl = MySQLSinkDTO.filterSensitive(
                 
"jdbc:mysql://127.0.0.1:3306?autoDeserialize=TRue&allowLoadLocalInfile = 
TRue&allowUrlInLocalInfile=TRue&allowLoadLocalInfileInPath=/&autoReconnect=true");
         Assertions.assertEquals(
                 
"jdbc:mysql://127.0.0.1:3306?autoReconnect=true&autoDeserialize=false&allowUrlInLocalInfile=false&allowLoadLocalInfile=false",

Reply via email to