frzysk/inception
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

change: remove limits to database pwd *

Browse source 
* still sql injection safe
This commit is contained in:
mcolonna 2025-06-17 14:28:33 +02:00
parent f92317ce67
commit 0b108ca152
1 changed files with 1 additions and 7 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
srcs/requirements/mariadb/run.sh
View file

@ -17,16 +17,10 @@ then
mariadb-install-db --user=www --datadir=/db mariadb-install-db --user=www --datadir=/db
echo "creating database..." echo "creating database..."
DATABASE_PWD="$(cat /run/secrets/database-pwd)" DATABASE_PWD="$(cat /run/secrets/database-pwd)"
if ! [[ "$DATABASE_PWD" =~ ^[a-zA-Z0-9_]+$ ]]
then
echo "the DB password must contain only letters, digits or '_'."
echo
exit 1
fi
echo ' echo '
FLUSH PRIVILEGES; FLUSH PRIVILEGES;
CREATE DATABASE wp; CREATE DATABASE wp;
GRANT ALL PRIVILEGES ON wp.* TO www IDENTIFIED BY "'$DATABASE_PWD'"; GRANT ALL PRIVILEGES ON wp.* TO www IDENTIFIED BY FROM_BASE64("'$(echo $DATABASE_PWD | base64)'");
FLUSH PRIVILEGES; FLUSH PRIVILEGES;
' | mariadbd -u root --bootstrap ' | mariadbd -u root --bootstrap
echo echo