def get_users_compliant()

in src/python/detectors/ldap_injection/ldap_injection.py [0:0]

• 11 lines of code
• 2 McCabe index (conditional complexity)

def get_users_compliant(request):
    import ldap
    import re
    from flask import request
    username = request.args['username']
    # Compliant: user-supplied filter is checked for allowed characters.
    filter_string = "(uid=" + re.sub('[!@#$%^&*()_+-=]', '', username) + ")"
    ldap_conn = ldap.initialize('ldaps://ldap.amazon.com:636')
    result = ldap_conn.search('o=amazon.com',
                              ldap.SCOPE_SUBTREE,
                              filter_string)
    return result