Sanitise logged requests (!237) · Merge Requests · gargantext / haskell-gargantext

Sanitise logged requests

This commit introduces a slight variation to the logStdOutDev middleware which is capable of redacting secrets from our gargantext requests.

This way we can run the server in dev mode (for instrumentation purposes) without leaking users' secrets.

@anoe Thanks to this patch, we now obfuscate in the logs things like the login password and the PubMed API key supplied for corpus searches. If you have in mind other sensitive information we might be leaking, feel free to share them here, or add the relevant keyword to the list called sensitiveKeywords inside Gargantext.API.Middleware.

We filter these keywords from any JSON body payload and from any query parameter (in case of GET requests).

It took me more than expected to code this patch as wai-extra didn't make it super easy to accomplish what we wanted, and I had to crib some code over.

Demo

When running the server with Dev mode enabled, this was the output before this patch:

This is the result after:

Fixes #298.

This commit introduces a slight variation to the `logStdOutDev`
middleware which is capable of redacting secrets from our gargantext
requests.

This way we can run the server in dev mode (for instrumentation
purposes) without leaking users' secrets.

@anoe Thanks to this patch, we now obfuscate in the logs things like the login `password` and the PubMed API key supplied for corpus searches. If you have in mind other sensitive information we might be leaking, feel free to share them here, or add the relevant keyword to the list called `sensitiveKeywords` inside `Gargantext.API.Middleware`.

We filter these keywords from any JSON body payload and from any query parameter (in case of `GET` requests).

It took me more than expected to code this patch as `wai-extra` didn't make it super easy to accomplish what we wanted, and I had to crib some code over.

## Demo

When running the server with `Dev` mode enabled, this was the output **before** this patch:

![Screenshot_2024-01-15_at_12.15.35](/uploads/8ed5a313bcf6b55134bfc19312e5c081/Screenshot_2024-01-15_at_12.15.35.png)

This is the result **after**:

![Screenshot_2024-01-15_at_16.13.53](/uploads/087201a6751725c69e84464621e44919/Screenshot_2024-01-15_at_16.13.53.png)

![Screenshot_2024-01-15_at_16.14.44](/uploads/413e3fff157248a10b689f30c6ce9f76/Screenshot_2024-01-15_at_16.14.44.png)

Sanitise logged requests

Demo

Check out, review, and merge locally

Revert this merge request

Cherry-pick this merge request