apunkt/nyx
1
0
Fork 0
mirror of https://github.com/elicpeter/nyx.git synced 2026-06-09 19:45:13 +02:00
Code Issues Projects Releases Packages Wiki Activity
nyx/tests/fixtures/ldap_injection/ruby/safe_ldap_search.rb
Eli Peter 7d0e7320e2
new capacity bits (#67)
2026-05-07 01:29:31 -04:00

13 lines
443 B
Ruby
Raw Permalink Blame History

# Safe: Net::LDAP::Filter.escape applies RFC 4515 escaping before the value
# is interpolated into the filter. Sanitizer(LDAP_INJECTION) clears the cap.
require "net/ldap"
class UsersController
def lookup(params)
ldap = Net::LDAP.new(host: "ldap.example.com")
user = params[:user]
safe = Net::LDAP::Filter.escape(user)
filter = "(uid=#{safe})"
ldap.search(base: "ou=people,dc=example,dc=com", filter: filter)
end
end
Reference in a new issue View git blame Copy permalink