1
0
mirror of https://github.com/ihabunek/toot synced 2024-12-22 23:08:17 +01:00

Censor authorization header value in logs

This commit is contained in:
Ivan Habunek 2020-05-11 12:46:27 +02:00
parent bc96cf7eea
commit ad96143ee0
No known key found for this signature in database
GPG Key ID: CDBD63C43A30BB95

View File

@ -3,11 +3,21 @@ from logging import getLogger
logger = getLogger('toot')
def censor_secrets(headers):
def _censor(k, v):
if k == "Authorization":
return (k, "***CENSORED***")
return k, v
return {_censor(k, v) for k, v in headers.items()}
def log_request(request):
logger.debug(">>> \033[32m{} {}\033[0m".format(request.method, request.url))
if request.headers:
logger.debug(">>> HEADERS: \033[33m{}\033[0m".format(request.headers))
headers = censor_secrets(request.headers)
logger.debug(">>> HEADERS: \033[33m{}\033[0m".format(headers))
if request.data:
logger.debug(">>> DATA: \033[33m{}\033[0m".format(request.data))