From ea9895b9869802e3bc0938499ba138054f2eb355 Mon Sep 17 00:00:00 2001
From: Mathijs de Bruin <mathijs@mathijsfietst.nl>
Date: Mon, 19 Sep 2011 14:37:38 +0200
Subject: [PATCH] Helper function for 'clean' logging of data.

---
 social_auth/utils.py | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)

diff --git a/social_auth/utils.py b/social_auth/utils.py
index 9d54848..9f2775f 100644
--- a/social_auth/utils.py
+++ b/social_auth/utils.py
@@ -4,6 +4,25 @@ from collections import defaultdict
 from social_auth.backends import BACKENDS, OpenIdAuth, BaseOAuth, BaseOAuth2
 
 
+def sanitize_log_data(secret, data=None, leave_characters=4):
+    """
+    Clean private/secret data from log statements and other data.
+
+    Assumes data and secret are strings. Replaces all but the first
+    `leave_characters` of `secret`, as found in `data`, with '*'.
+
+    If no data is given, all but the first `leave_characters` of secret
+    are simply replaced and returned.
+    """
+    replace_secret = (secret[:leave_characters] +
+                      (len(secret) - leave_characters) * '*')
+
+    if data:
+        return data.replace(secret, replace_secret)
+
+    return replace_secret
+
+
 def sanitize_redirect(host, redirect_to):
     """
     Given the hostname and an untrusted URL to redirect to,
-- 
2.39.5