github/directus
1
1
Fork 0
mirror of https://github.com/directus/directus.git synced 2026-04-25 03:00:53 -04:00
Code Issues Packages Projects Releases Wiki Activity
Files
v10.5.1
directus/api/src/logger.ts
Pascal Jufer a708ec79d8 Redact additional keys in logs of Flows (#18534) 
* Redact additional keys in logs of Flows

* Create moody-poems-pump.md

* Move REDACTED_TEXT to constants package & update tests

* Revert "Move REDACTED_TEXT to constants package & update tests"

This reverts commit 0f5b227253.

* Update redacted value in blackbox test

* Use own redact implementation

* Move REDACTED_TEXT to constants package

* Replace outdated comment

* Fix misleading return type

Since values might change (redacted), output isn't necessarily the same type anymore
2023-05-19 09:41:04 -04:00

129 lines
2.9 KiB
TypeScript
Raw Permalink Blame History

import { REDACTED_TEXT } from '@directus/constants';
import { toArray } from '@directus/utils';
import type { Request, RequestHandler } from 'express';
import { merge } from 'lodash-es';
import type { LoggerOptions } from 'pino';
import { pino } from 'pino';
import { pinoHttp, stdSerializers } from 'pino-http';
import { URL } from 'url';
import env from './env.js';
import { getConfigFromEnv } from './utils/get-config-from-env.js';
const pinoOptions: LoggerOptions = {
level: env['LOG_LEVEL'] || 'info',
redact: {
paths: ['req.headers.authorization', 'req.headers.cookie'],
censor: REDACTED_TEXT,
},
};
export const httpLoggerOptions: LoggerOptions = {
level: env['LOG_LEVEL'] || 'info',
redact: {
paths: ['req.headers.authorization', 'req.headers.cookie'],
censor: REDACTED_TEXT,
},
};
if (env['LOG_STYLE'] !== 'raw') {
pinoOptions.transport = {
target: 'pino-pretty',
options: {
ignore: 'hostname,pid',
sync: true,
},
};
httpLoggerOptions.transport = {
target: 'pino-http-print',
options: {
all: true,
translateTime: 'SYS:HH:MM:ss',
relativeUrl: true,
prettyOptions: {
ignore: 'hostname,pid',
sync: true,
},
},
};
}
if (env['LOG_STYLE'] === 'raw') {
httpLoggerOptions.redact = {
paths: ['req.headers.authorization', 'req.headers.cookie', 'res.headers'],
censor: (value, pathParts) => {
const path = pathParts.join('.');
if (path === 'res.headers') {
if ('set-cookie' in value) {
value['set-cookie'] = REDACTED_TEXT;
}
return value;
}
return REDACTED_TEXT;
},
};
}
const loggerEnvConfig = getConfigFromEnv('LOGGER_', 'LOGGER_HTTP');
// Expose custom log levels into formatter function
if (loggerEnvConfig['levels']) {
const customLogLevels: { [key: string]: string } = {};
for (const el of toArray(loggerEnvConfig['levels'])) {
const key_val = el.split(':');
customLogLevels[key_val[0].trim()] = key_val[1].trim();
}
pinoOptions.formatters = {
level(label: string, number: any) {
return {
severity: customLogLevels[label] || 'info',
level: number,
};
},
};
httpLoggerOptions.formatters = {
level(label: string, number: any) {
return {
severity: customLogLevels[label] || 'info',
level: number,
};
},
};
delete loggerEnvConfig['levels'];
}
const logger = pino(merge(pinoOptions, loggerEnvConfig));
const httpLoggerEnvConfig = getConfigFromEnv('LOGGER_HTTP', ['LOGGER_HTTP_LOGGER']);
export const expressLogger = pinoHttp({
logger: pino(merge(httpLoggerOptions, loggerEnvConfig)),
...httpLoggerEnvConfig,
serializers: {
req(request: Request) {
const output = stdSerializers.req(request);
output.url = redactQuery(output.url);
return output;
},
},
}) as RequestHandler;
export default logger;
function redactQuery(originalPath: string) {
const url = new URL(originalPath, 'http://example.com/');
if (url.searchParams.has('access_token')) {
url.searchParams.set('access_token', REDACTED_TEXT);
}
return url.pathname + url.search;
}
Reference in New Issue View Git Blame Copy Permalink