Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Feature pathmask #27

Open
wants to merge 13 commits into
base: master
Choose a base branch
from
Open

Feature pathmask #27

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
13 commits
Select commit Hold shift + click to select a range
b798c30
Add path wrapper
sunnamed434 Feb 20, 2023
9fc309f
Add tests
sunnamed434 Feb 20, 2023
7ec4223
Add demo
sunnamed434 Feb 20, 2023
50c80db
Add benchmark
sunnamed434 Feb 20, 2023
144b637
Update version to 0.2.0.0
sunnamed434 Feb 20, 2023
9c9b506
Update README and add new PathMaskingOperator
sunnamed434 Feb 20, 2023
d4c2ac8
Update version correctly
sunnamed434 Feb 20, 2023
2296354
Remove benchmark
sunnamed434 Mar 4, 2023
968e9b9
Add PathMaskingOperator as new default masking operator
sunnamed434 Mar 4, 2023
163a215
Code refactoring
sunnamed434 Mar 4, 2023
245da54
Remove path wrapper
sunnamed434 Mar 5, 2023
9326948
Merge branch 'master' into feature/pathmask
sunnamed434 Mar 5, 2023
1f9bf0b
Merge branch 'master' into feature/pathmask
sandermvanvliet Apr 14, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
4 changes: 2 additions & 2 deletions Directory.Build.props
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,7 +1,7 @@
<Project>
<PropertyGroup>
<Version>1.7.3.0</Version>
<Authors>Sander van Vliet, Huibert Jan Nieuwkamer, Scott Toberman</Authors>
<Version>1.8.0.0</Version>
<Authors>Sander van Vliet, Huibert Jan Nieuwkamer, Scott Toberman, sunnamed434</Authors>
<Company>Codenizer BV</Company>
<Copyright>2023 Sander van Vliet</Copyright>
</PropertyGroup>
Expand Down
1 change: 1 addition & 0 deletions README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -102,6 +102,7 @@ By default the enricher uses the following masking operators:
- EmailAddressMaskingOperator
- IbanMaskingOperator
- CreditCardMaskingOperator
- PathMaskingOperator
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Adding the default operators when I built this library was a bit of a mistake.
Could you remove it from the docs here? (I see you didn't actually add it to the list of default operators)

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Added to the default list of operators


It's good practice to only configure the masking operators that are applicable for your application. For example:

Expand Down
14 changes: 12 additions & 2 deletions src/Serilog.Enrichers.Sensitive.Demo/Program.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,4 +1,5 @@
using System;
using System.IO;
using System.Threading.Tasks;
using Serilog.Core;

Expand All @@ -13,7 +14,8 @@ static async Task Main(string[] args)
{
new EmailAddressMaskingOperator(),
new IbanMaskingOperator(),
new CreditCardMaskingOperator(false)
new CreditCardMaskingOperator(false),
new PathMaskingOperator()
})
.WriteTo.Console()
.CreateLogger();
Expand Down Expand Up @@ -43,16 +45,24 @@ static async Task Main(string[] args)
Key = 12345, XmlValue = "<MyElement><CreditCard>4111111111111111</CreditCard></MyElement>"
};
logger.Information("Object dump with embedded credit card: {x}", x);

// Path to the file is also masked
logger.Information("This is path to the file: {0}",
@"E:\SuperSecretPath\test.txt");

// Path to the directory is also masked
logger.Information("This is path to the directory: {0}", @"C:\Admin\");

}

// But outside the sensitive area nothing is masked
logger.Information("Felix can be reached at [email protected]");

logger.Information("This is your path to the file: {file}", new FileInfo("test.txt").FullName);

// Now, show that this works for async contexts too
logger.Information("Now, show the Async works");

var t1 = LogAsSensitiveAsync(logger);
var t2 = LogAsUnsensitiveAsync(logger);

Expand Down
38 changes: 38 additions & 0 deletions src/Serilog.Enrichers.Sensitive/PathMaskingOperator.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,38 @@
using System.Diagnostics.CodeAnalysis;
using System.IO;
using System.Text.RegularExpressions;

namespace Serilog.Enrichers.Sensitive;

/// <summary>
/// Represents a masking operator for path names.
/// <remarks>Supports path names for Windows, Linux, and macOS.</remarks>
/// </summary>
public class PathMaskingOperator : RegexMaskingOperator
{
private readonly bool _keepLastPartOfPath;
private const string PathPattern =
@"^(?:[a-zA-Z]\:|\\\\[\w-]+\\[\w-]+\$?|[\/][^\/\0]+)+(\\[^\\/:*?""<>|]*)*(\\?)?$";

/// <summary>
/// Initializes a new instance of the <see cref="PathMaskingOperator"/> class.
/// </summary>
/// <param name="keepLastPartOfPath">If set to <see langword="true"/> then the mask will keep together with file name or its directory name.</param>
public PathMaskingOperator(bool keepLastPartOfPath = true) : base(PathPattern)
{
_keepLastPartOfPath = keepLastPartOfPath;
}

[SuppressMessage("ReSharper", "InvertIf")]
protected override string PreprocessMask(string mask, Match match)
{
if (_keepLastPartOfPath)
{
var value = match.Value;
return Path.GetExtension(value) == string.Empty
? mask + new DirectoryInfo(value).Name
: mask + Path.GetFileName(value);
}
return mask;
}
}
3 changes: 2 additions & 1 deletion src/Serilog.Enrichers.Sensitive/SensitiveDataEnricher.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -344,7 +344,8 @@ private string MaskWithOptions(string maskValue, MaskOptions options, string inp
{
new EmailAddressMaskingOperator(),
new IbanMaskingOperator(),
new CreditCardMaskingOperator()
new CreditCardMaskingOperator(),
new PathMaskingOperator()
};

}
Expand Down
2 changes: 1 addition & 1 deletion src/Serilog.Enrichers.Sensitive/Serilog.Enrichers.Sensitive.csproj
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -12,7 +12,7 @@
<Title>Serilog enricher to mask sensitive data</Title>
<Description>An enricher to be used for masking sensitive (PII) data using Serilog</Description>
<Copyright Condition="'$(Copyright)' == ''">2023 Sander van Vliet</Copyright>
<Authors Condition="'$(Authors)' == ''">Sander van Vliet, Huibert Jan Nieuwkamer, Scott Toberman</Authors>
<Authors Condition="'$(Authors)' == ''">Sander van Vliet, Huibert Jan Nieuwkamer, Scott Toberman, sunnamed434</Authors>
<PackageProjectUrl>https://github.com/serilog-contrib/Serilog.Enrichers.Sensitive/</PackageProjectUrl>
<PackageLicenseExpression>MIT</PackageLicenseExpression>
<RepositoryUrl>https://github.com/serilog-contrib/Serilog.Enrichers.Sensitive/</RepositoryUrl>
Expand Down
39 changes: 39 additions & 0 deletions test/Serilog.Enrichers.Sensitive.Tests.Unit/WhenMaskingPaths.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,39 @@
using FluentAssertions;
using Xunit;

namespace Serilog.Enrichers.Sensitive.Tests.Unit;

public class WhenMaskingPaths
{
private const string Mask = @"***\";

[Theory]
[InlineData(@"C:\Users\Admin\Secret\File.dll", @"***\", false)]
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I would expect this to be only the mask in the expected output. Right now it looks like you're keeping the directory separator which seems odd.

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Don't really understand what do you mean

[InlineData(@"C:\Users\Admin\Secret\File.dll", @"***\File.dll", true)]
[InlineData(@"C:\Users\Admin\Secret\Hidden\File.dll", @"***\File.dll", true)]
[InlineData(@"C:\Users\Admin\Secret\Hidden", @"***\", false)]
[InlineData(@"C:\Users\Admin\Secret\Hidden", @"***\Hidden", true)]
[InlineData(@"C:\Users\Admin\Secret", @"***\Secret", true)]
[InlineData(@"C:\Users\", @"***\Users", true)]
[InlineData(@"/home/i_use_arch_linux_btw", @"***\i_use_arch_linux_btw", true)]
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This made me laugh 😄

[InlineData(@"/home/i_use_arch_linux_btw", @"***\", false)]
[InlineData(@"C:\", @"***\C:\", true)]
[InlineData(@"C:\", @"***\", false)]
[InlineData("File.txt", "File.txt", false)]
[InlineData(@"This is not a path", "This is not a path", false)]
public void GivenPaths_ReturnsExpectedResult(string path, string result, bool combineMaskWithPath)
{
TheMaskedResultOf(path, combineMaskWithPath)
.Should()
.Be(result);
}

private static string TheMaskedResultOf(string input, bool combineMaskWithPath)
{
var maskingResult = new PathMaskingOperator(combineMaskWithPath)
.Mask(input, Mask);
return maskingResult.Match
? maskingResult.Result
: input;
}
}
Loading