Fix: Update

Author: vr-varad

dbos/system_database.go

@@ -8,6 +8,7 @@ import (
 	"log/slog"
 	"math"
 	"math/rand"
+	"net/url"
 	"strings"
 	"sync"
 	"time"
@@ -253,9 +254,14 @@ func newSystemDatabase(ctx context.Context, inputs newSystemDatabaseInput) (syst
 	customPool := inputs.customPool
 	logger := inputs.logger
 
-	maskedDatabaseURL := maskPassword(databaseURL)
-	fmt.Println(maskedDatabaseURL)
-	
+	// Displaying Masked Database URL
+	maskedDatabaseURL, err := maskPassword(databaseURL)
+	if err != nil {
+		logger.Warn("Failed to parse database URL", "error", err)
+	} else {
+		logger.Info("Masked Database URL", "url", maskedDatabaseURL)
+	}
+
 	// Validate that schema is provided
 	if databaseSchema == "" {
 		return nil, fmt.Errorf("database schema cannot be empty")
@@ -2470,3 +2476,31 @@ func backoffWithJitter(retryAttempt int) time.Duration {
 	jitter := 0.75 + rand.Float64()*0.5 // #nosec G404 -- trivial use of math/rand
 	return time.Duration(exp * jitter)
 }
+
+// maskPassword replaces the password in a database URL with asterisks
+func maskPassword(dbURL string) (string, error) {
+	parsedURL, err := url.Parse(dbURL)
+
+	if err != nil {
+		return "", err
+	}
+
+	// Check if there is user info with a password
+	if parsedURL.User != nil {
+		username := parsedURL.User.Username()
+		_, hasPassword := parsedURL.User.Password()
+		if hasPassword {
+			// Manually construct the URL with masked password to avoid encoding
+			maskedURL := parsedURL.Scheme + "://" + username + ":********@" + parsedURL.Host + parsedURL.Path
+			if parsedURL.RawQuery != "" {
+				maskedURL += "?" + parsedURL.RawQuery
+			}
+			if parsedURL.Fragment != "" {
+				maskedURL += "#" + parsedURL.Fragment
+			}
+			return maskedURL, nil
+		}
+	}
+
+	return parsedURL.String(), nil
+}