Skip to content

Commit

Permalink
fix: Sanitize raven breadcrumbs too
Browse files Browse the repository at this point in the history
  • Loading branch information
rjmackay committed Jul 5, 2018
1 parent 072403b commit 6a5d41f
Showing 1 changed file with 13 additions and 9 deletions.
22 changes: 13 additions & 9 deletions app/common/raven/raven.js
Original file line number Diff line number Diff line change
Expand Up @@ -18,17 +18,21 @@ if (ravenUrl) {
dataCallback: (data) => {
// Replace stringified sensitive info
if (data.message) {
data.message = data.message.replace(/"Authorization":"(.*?)"/, '"Authorization":"****"');
data.message = data.message.replace(/"client_secret":"(.*?)"/, '"client_secret":"****"');
data.message = data.message.replace(/"password":"(.*?)"/, '"password":"****"');
data.message = data.message.replace(/"accessToken":"(.*?)"/, '"accessToken":"****"');
data.message = data.message.replace(/"(Authorization|client_secret|password|accessToken)":"(.*?)"/, '"$1":"****"');
}

if (data.fingerprint && data.fingerprint[0]) {
data.fingerprint[0] = data.fingerprint[0].replace(/"Authorization":"(.*?)"/, '"Authorization":"****"');
data.fingerprint[0] = data.fingerprint[0].replace(/"client_secret":"(.*?)"/, '"client_secret":"****"');
data.fingerprint[0] = data.fingerprint[0].replace(/"password":"(.*?)"/, '"password":"****"');
data.fingerprint[0] = data.fingerprint[0].replace(/"accessToken":"(.*?)"/, '"accessToken":"****"');
if (data.fingerprint) {
data.fingerprint.forEach((value, index) => {
data.fingerprint[index] = value.replace(/"(Authorization|client_secret|password|accessToken)":"(.*?)"/, '"$1":"****"');
});
}

if (data.breadcrumbs && data.breadcrumbs.values) {
data.breadcrumbs.values.forEach((value, index) => {
if (value.message) {
data.breadcrumbs.values[index].message = value.message.replace(/"(Authorization|client_secret|password|accessToken)":"(.*?)"/, '"$1":"****"');
}
});
}
}
})
Expand Down

0 comments on commit 6a5d41f

Please sign in to comment.