diff options
| author | Donald Stufft <donald@stufft.io> | 2013-07-25 21:57:01 -0400 |
|---|---|---|
| committer | Donald Stufft <donald@stufft.io> | 2013-07-25 21:57:01 -0400 |
| commit | 0e4ea1b3e8c2dbdb15f617260aaae401c1cbac59 (patch) | |
| tree | bcbd1aae93765204ff6838520e8512c7873aa68c | |
| parent | 1e70ddf0ae9dfd207e216632d794237870ec97e5 (diff) | |
| download | decorator-0e4ea1b3e8c2dbdb15f617260aaae401c1cbac59.tar.gz | |
Restrict new user names further
| -rw-r--r-- | webui.py | 5 |
1 files changed, 4 insertions, 1 deletions
@@ -73,7 +73,10 @@ def make_key(precision, datetime, key): legal_package_name = re.compile(r"^[a-z0-9\._-]+$", re.IGNORECASE) safe_filenames = re.compile(r'.+?\.(exe|tar\.gz|bz2|rpm|deb|zip|tgz|egg|dmg|msi|whl)$', re.I) -safe_username = re.compile(r'^[A-Za-z0-9._]+$') + +# Must begin and end with an alphanumeric, interior can also contain ._- +safe_username = re.compile(r"^([A-Z0-9]|[A-Z0-9][A-Z0-9._-]*[A-Z0-9])$", re.I) + safe_email = re.compile(r'^[a-zA-Z0-9._+@-]+$') botre = re.compile(r'^$|brains|yeti|myie2|findlinks|ia_archiver|psycheclone|badass|crawler|slurp|spider|bot|scooter|infoseek|looksmart|jeeves', re.I) |