810448afa0
postgresql_escape returned an invalid string if the password end in '$':
postgres=# alter role "postgres" password $$foo$$$;
ERROR: syntax error at or near "$"
LINE 1: alter role "postgres" password $$foo$$$;
25 lines
741 B
Ruby
25 lines
741 B
Ruby
require 'digest/md5'
|
|
|
|
module Puppet::Parser::Functions
|
|
newfunction(:postgresql_escape, :type => :rvalue, :doc => <<-EOS
|
|
Safely escapes a string using $$ using a random tag which should be consistent
|
|
EOS
|
|
) do |args|
|
|
|
|
raise(Puppet::ParseError, "postgresql_escape(): Wrong number of arguments " +
|
|
"given (#{args.size} for 1)") if args.size != 1
|
|
|
|
password = args[0]
|
|
|
|
if password !~ /\$\$/ and password[-1] != '$'
|
|
retval = "$$#{password}$$"
|
|
else
|
|
escape = Digest::MD5.hexdigest(password)[0..5].gsub(/\d/,'')
|
|
until password !~ /#{escape}/
|
|
escape = Digest::MD5.hexdigest(escape)[0..5].gsub(/\d/,'')
|
|
end
|
|
retval = "$#{escape}$#{password}$#{escape}$"
|
|
end
|
|
retval
|
|
end
|
|
end
|