Startseite Erkunden Hilfe
Anmelden
yo
/
gitote
Mirror von https://gitlab.com/gitote/gitote
Beobachten 1
Favorit hinzufügen 1
Fork 0
Dateien Issues 0 Wiki
Struktur: dd14eb2cc0
Branches Tags
gitote
/
pkg
/
tool
/
path.go

path.go 753 B
Verlauf Originalformat

123456789101112131415161718192021222324252627 
  1. // Copyright 2015 The Gogs Authors. All rights reserved.
    2. 

  2. // Copyright 2018 Gitote. All rights reserved.
    3. 

  3. //
    4. 

  4. // This source code is licensed under the MIT license found in the
    5. 

  5. // LICENSE file in the root directory of this source tree.
    6. 

  6. 

  7. package tool
    8. 

  8. 

  9. import (
    10. 

  10. 	"strings"
    11. 

  11. )
    12. 

  12. 

  13. // IsSameSiteURLPath returns true if the URL path belongs to the same site, false otherwise.
    14. 

  14. // False: //url, http://url, /\url
    15. 

  15. // True: /url
    16. 

  16. 

  17. func IsSameSiteURLPath(url string) bool {
    18. 

  18. 	return len(url) >= 2 && url[0] == '/' && url[1] != '/' && url[1] != '\\'
    19. 

  19. }
    20. 

  20. 

  21. // SanitizePath sanitizes user-defined file paths to prevent remote code execution.
    22. 

  22. func SanitizePath(path string) string {
    23. 

  23. 	path = strings.TrimLeft(path, "/")
    24. 

  24. 	path = strings.Replace(path, "../", "", -1)
    25. 

  25. 	return path
    26. 

  26. }
    27. 

  27.