|
15 | 15 | from os import environ |
16 | 16 | from re import compile as re_compile |
17 | 17 | from re import search |
| 18 | +from re import IGNORECASE as RE_IGNORECASE |
18 | 19 | from typing import Iterable, List |
19 | 20 | from urllib.parse import urlparse, urlunparse |
20 | 21 |
|
21 | 22 | from opentelemetry.semconv.trace import SpanAttributes |
22 | 23 |
|
| 24 | +OTEL_INSTRUMENTATION_HTTP_CAPTURE_HEADERS_SANITIZE_FIELDS = ( |
| 25 | + "OTEL_INSTRUMENTATION_HTTP_CAPTURE_HEADERS_SANITIZE_FIELDS" |
| 26 | +) |
23 | 27 | OTEL_INSTRUMENTATION_HTTP_CAPTURE_HEADERS_SERVER_REQUEST = ( |
24 | 28 | "OTEL_INSTRUMENTATION_HTTP_CAPTURE_HEADERS_SERVER_REQUEST" |
25 | 29 | ) |
@@ -60,6 +64,22 @@ def url_disabled(self, url: str) -> bool: |
60 | 64 | return bool(self._excluded_urls and search(self._regex, url)) |
61 | 65 |
|
62 | 66 |
|
| 67 | +class SanitizeValue: |
| 68 | + """Class to sanitize (remove sensitive data from) certain headers (given as a list of regexes)""" |
| 69 | + |
| 70 | + def __init__(self, sanitized_fields: Iterable[str]): |
| 71 | + self._sanitized_fields = sanitized_fields |
| 72 | + if self._sanitized_fields: |
| 73 | + self._regex = re_compile("|".join(sanitized_fields), RE_IGNORECASE) |
| 74 | + |
| 75 | + def sanitize_header_value(self, header: str, value: str) -> str: |
| 76 | + return ( |
| 77 | + "[REDACTED]" |
| 78 | + if (self._sanitized_fields and search(self._regex, header)) |
| 79 | + else value |
| 80 | + ) |
| 81 | + |
| 82 | + |
63 | 83 | _root = r"OTEL_PYTHON_{}" |
64 | 84 |
|
65 | 85 |
|
@@ -90,7 +110,7 @@ def get_excluded_urls(instrumentation: str) -> ExcludeList: |
90 | 110 |
|
91 | 111 | def parse_excluded_urls(excluded_urls: str) -> ExcludeList: |
92 | 112 | """ |
93 | | - Small helper to put an arbitrary url list inside of ExcludeList |
| 113 | + Small helper to put an arbitrary url list inside an ExcludeList |
94 | 114 | """ |
95 | 115 | if excluded_urls: |
96 | 116 | excluded_url_list = [ |
|
0 commit comments