Sanitize querystring query

Garito · March 10, 2017, 1:03pm

Hi!
Could you, please, help me on sanitizing the query? I prefer python

Thanks!

dadoonet · March 10, 2017, 2:59pm

What is the question?

Garito · March 10, 2017, 3:16pm

I'm asking for a python code that sanitizes the user input before parse it to the querystring query

For instance, using this query:
+
will fail

I don't know if this query has any security concern but will be nice if the sanitization process could have this in mind

dadoonet · March 10, 2017, 3:37pm

Why not using a simple_query_string query instead?

Garito · March 10, 2017, 4:01pm

As soon as I can migrate my servers to 5.x
But this will solve my problem and I plan to upgrade'em soon

Thanks David!!!

dadoonet · March 10, 2017, 4:12pm

simple_query_string exists in previous versions as well. Which one are you running?

Garito · March 11, 2017, 2:21am

Using 1.7

dadoonet · March 11, 2017, 5:21am

Garito · March 11, 2017, 11:32am

Wow! Nice!
I will bet that I was checked this out but will lost like a champ

I'll try it, thanks a lot!!!!!!

system · April 8, 2017, 11:32am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Santizing query-strings Elasticsearch	3	367	July 6, 2017
Should I use query_string in production? Elasticsearch	3	1375	July 5, 2017
Best practices for executing user queries and reporting errors back to user Elasticsearch	3	469	July 6, 2017
Why doesn't simple_query_string accept a type parameter? Elasticsearch	1	336	March 17, 2019
Creating multiple query_string Elasticsearch	2	1436	August 3, 2018