Skip to content

Add username sanitisation (12.x) #6075

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
4urum19 wants to merge 1 commit into
base: 12.x
Choose a base branch
from
Open

Add username sanitisation (12.x) #6075

4urum19 wants to merge 1 commit into from

Conversation

@4urum19
Copy link

@4urum19 4urum19 commented Jul 31, 2024

Fixes #4609 for projects on drush 12.x

@4urum19 4urum19 changed the title Add support for username sanitisation when sql:sanitise is called. Add username sanitisation for drush version 12.x Jul 31, 2024
@weitzman weitzman changed the title Add username sanitisation for drush version 12.x Add username sanitisation Aug 2, 2024
@weitzman
Copy link
Member

weitzman commented Aug 2, 2024
edited
Loading

Woops, I see there is a different Pr for 13.x at #6057

Needs to go into 13.x first

@weitzman weitzman changed the title Add username sanitisation Add username sanitisation (12.x) Aug 14, 2024
@robme robme mentioned this pull request Jan 3, 2025
Open
NielsSluijs
NielsSluijs reviewed Jan 15, 2025
View reviewed changes
src/Drupal/Commands/sql/SanitizeUserTableCommands.php
$new_username = "'" . str_replace(array_keys($username_map), array_values($username_map), $options['sanitize-usernames']) . "'";
} elseif ($db_driver === 'mssql') {
$username_map = ['%uid' => "' + uid + '"];
$new_username = "'" . str_replace(array_keys($username_map), array_values($username_map), $options['sanitize-email']) . "'";
Copy link
Contributor

@NielsSluijs NielsSluijs Jan 15, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think the $options['sanitize-email'] is a copy-paste error and should be replaced into $options['sanitize-usernames']

RaphTbm
RaphTbm reviewed Nov 7, 2025
View reviewed changes
src/Drupal/Commands/sql/SanitizeUserTableCommands.php
#[CLI\Option(name: 'sanitize-usernames', description: 'Sanitize the names of users by replacing the originals with user+UID, or <info>no</info> to keep usernames unchanged.')]
#[CLI\Option(name: 'ignored-roles', description: 'A comma delimited list of roles. Users with at least one of the roles will be exempt from sanitization.')]
public function options($options = ['sanitize-email' => 'user+%[email protected]', 'sanitize-password' => null, 'ignored-roles' => null]): void
public function options($options = ['sanitize-email' => 'user+%[email protected]', 'sanitize-password' => null, 'sanitize-usernames' => 'user+%uid', 'ignored-roles' => null]): void
Copy link

@RaphTbm RaphTbm Nov 7, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm not sure "+" is an allowed character for drupal username in the admin.
Maybe the default value in the command should be an underscore to avoid potential breaking?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@weitzman weitzman Awaiting requested review from weitzman weitzman is a code owner

@greg-1-anderson greg-1-anderson Awaiting requested review from greg-1-anderson greg-1-anderson is a code owner

2 more reviewers

@RaphTbm RaphTbm RaphTbm left review comments

@NielsSluijs NielsSluijs NielsSluijs left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

stat-needs-tests stat-needs-work

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@4urum19 @weitzman @RaphTbm @NielsSluijs @wduiv