Sanitize querystring query

Garito · March 10, 2017, 1:03pm

Hi!
Could you, please, help me on sanitizing the query? I prefer python

Thanks!

dadoonet · March 10, 2017, 2:59pm

What is the question?

Garito · March 10, 2017, 3:16pm

I'm asking for a python code that sanitizes the user input before parse it to the querystring query

For instance, using this query:
+
will fail

I don't know if this query has any security concern but will be nice if the sanitization process could have this in mind

dadoonet · March 10, 2017, 3:37pm

Why not using a simple_query_string query instead?

Garito · March 10, 2017, 4:01pm

As soon as I can migrate my servers to 5.x
But this will solve my problem and I plan to upgrade'em soon

Thanks David!!!

dadoonet · March 10, 2017, 4:12pm

simple_query_string exists in previous versions as well. Which one are you running?

Garito · March 11, 2017, 2:21am

Using 1.7

dadoonet · March 11, 2017, 5:21am

Garito · March 11, 2017, 11:32am

Wow! Nice!
I will bet that I was checked this out but will lost like a champ

I'll try it, thanks a lot!!!!!!

system · April 8, 2017, 11:32am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Santizing query-strings Elasticsearch	3	369	July 6, 2017
Query_string - locking down list of allowed fields Elasticsearch	3	510	July 5, 2017
Simple query string query returning invalid results Elasticsearch	7	1447	July 5, 2017
Escaping user input for search queries Elasticsearch	5	594	August 18, 2019
Querying Elasticsearch	1	306	March 28, 2018