Sha256: 6a2f71e90934676f5ad7d96864449b24991f76a85ac05fb0c579f2d316810b21
Contents?: true
Size: 1.79 KB
Versions: 3
Compression:
Stored size: 1.79 KB
Contents
require 'json'
module Raven
class Processor::SanitizeData < Processor
STRING_MASK = '********'
INT_MASK = 0
DEFAULT_FIELDS = %w(authorization password passwd secret ssn social(.*)?sec)
CREDIT_CARD_RE = /^(?:\d[ -]*?){13,16}$/
attr_accessor :sanitize_fields, :sanitize_credit_cards
def initialize(client)
super
self.sanitize_fields = client.configuration.sanitize_fields
self.sanitize_credit_cards = client.configuration.sanitize_credit_cards
end
def process(value)
value.inject(value) { |memo,(k,v)| memo[k] = sanitize(k,v); memo }
end
def sanitize(k,v)
if v.is_a?(Hash)
process(v)
elsif v.is_a?(Array)
v.map{|a| sanitize(k, a)}
elsif k == 'query_string'
sanitize_query_string(v)
elsif v.is_a?(Integer) && matches_regexes?(k,v)
INT_MASK
elsif v.is_a?(String)
if fields_re.match(v.to_s) && (json = parse_json_or_nil(v))
#if this string is actually a json obj, convert and sanitize
json.is_a?(Hash) ? process(json).to_json : v
elsif matches_regexes?(k,v)
STRING_MASK
else
v
end
else
v
end
end
private
def sanitize_query_string(query_string)
query_hash = CGI::parse(query_string)
processed_query_hash = process(query_hash)
URI.encode_www_form(processed_query_hash)
end
def matches_regexes?(k, v)
(sanitize_credit_cards && CREDIT_CARD_RE.match(v.to_s)) ||
fields_re.match(k.to_s)
end
def fields_re
@fields_re ||= /(#{(DEFAULT_FIELDS | sanitize_fields).join("|")})/i
end
def parse_json_or_nil(string)
begin
OkJson.decode(string)
rescue Raven::OkJson::Error, NoMethodError
nil
end
end
end
end
Version data entries
3 entries across 3 versions & 1 rubygems
| Version | Path |
|---|---|
| sentry-raven-0.14.0 | lib/raven/processor/sanitizedata.rb |
| sentry-raven-0.13.3 | lib/raven/processor/sanitizedata.rb |
| sentry-raven-0.13.2 | lib/raven/processor/sanitizedata.rb |