diff options
| author | multiple creatures <dev@multiple-creature.party> | 2019-07-19 10:16:33 -0500 |
|---|---|---|
| committer | multiple creatures <dev@multiple-creature.party> | 2019-07-19 10:16:33 -0500 |
| commit | bc22ab034bb9bbb48fb2cc93c1a617cbcd14ff9d (patch) | |
| tree | bc54ec5e2e2dc59fc756ee229444a2103d1be3f3 /app/helpers/url_helper.rb | |
| parent | 23c36c2d7cdd02106f30fa3d9e049212b08ae5cd (diff) | |
move query string sanitizer to its own module & sanitize link cards as well
Diffstat (limited to 'app/helpers/url_helper.rb')
| -rw-r--r-- | app/helpers/url_helper.rb | 37 |
1 files changed, 37 insertions, 0 deletions
diff --git a/app/helpers/url_helper.rb b/app/helpers/url_helper.rb new file mode 100644 index 000000000..dd1cf264c --- /dev/null +++ b/app/helpers/url_helper.rb @@ -0,0 +1,37 @@ +module UrlHelper + def sanitize_query_string(url) + return if url.blank? + url = Addressable::URI.parse(url) + return url.to_s if url.query.blank? + params = CGI.parse(url.query) + params.delete_if do |key| + k = key.downcase + next true if k.start_with?( + '_hs', + 'ic', + 'mc_', + 'mkt_', + 'ns_', + 'sr_', + 'utm', + 'vero_', + 'nr_', + 'ref', + ) + next true if 'track'.in?(k) + next true if [ + 'fbclid', + 'gclid', + 'ncid', + 'ocid', + 'r', + 'spm', + ].include?(k) + false + end + url.query = URI.encode_www_form(params) + return url.to_s + rescue Addressable::URI::InvalidURIError, IDN::Idna::IdnaError + return '#' + end +end |