makes the profile urls.py entry way more restrictive (#5454)

* makes profile regex MUCH more discerning * makes profile regex MUCH more discerning * fix regex for slash
gitcoinco · Nov 6, 2019 · 974a43a · 974a43a
1 parent ac17caf
commit 974a43a
Showing 1 changed file with 3 additions and 2 deletions.
diff --git a/app/app/urls.py b/app/app/urls.py
@@ -610,8 +610,9 @@
     ]
 
 urlpatterns += [
-    re_path(r'^(.*)/(.*)?', dashboard.views.profile, name='profile_min_by_tab'),
-    re_path(r'^(.*)', dashboard.views.profile, name='profile_min'),
+    re_path(r'^([a-z|A-Z|0-9|\.](?:[a-z\d]|-(?=[a-z\d]))+)/([a-z|A-Z|0-9|\.]+)/?$', dashboard.views.profile, name='profile_min'),
+
+    re_path(r'^([a-z|A-Z|0-9|\.](?:[a-z\d]|-(?=[a-z\d]))+)/?$', dashboard.views.profile, name='profile_min'),
 ]
 
 handler403 = 'retail.views.handler403'