fluent-plugin-anonymizer 0.2.2 → 0.3.0

data/fluent-plugin-anonymizer.gemspec

@@ -4,7 +4,7 @@ $LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
 
 Gem::Specification.new do |spec|
   spec.name          = "fluent-plugin-anonymizer"
-  spec.version       = "0.2.2"
+  spec.version       = "0.3.0"
   spec.authors       = ["Kentaro Yoshida"]
   spec.email         = ["y.ken.studio@gmail.com"]
   spec.summary       = %q{Fluentd filter output plugin to anonymize records with HMAC of MD5/SHA1/SHA256/SHA384/SHA512 algorithms. This data masking plugin protects privacy data such as UserID, Email, Phone number, IPv4/IPv6 address and so on.}

data/lib/fluent/plugin/out_anonymizer.rb

@@ -2,7 +2,7 @@ require 'fluent/mixin/rewrite_tag_name'
 
 class Fluent::AnonymizerOutput < Fluent::Output
   Fluent::Plugin.register_output('anonymizer', self)
-  
+
   # To support log_level option since Fluentd v0.10.43
   unless method_defined?(:log)
     define_method(:log) { $log }
@@ -32,7 +32,7 @@ class Fluent::AnonymizerOutput < Fluent::Output
     require 'ipaddr'
     super
   end
-  
+
   def configure(conf)
     super
 
@@ -41,7 +41,7 @@ class Fluent::AnonymizerOutput < Fluent::Output
       hash_algorithm_name = key.sub('_keys','')
       raise Fluent::ConfigError, "anonymizer: unsupported key #{hash_algorithm_name}" unless HASH_ALGORITHM.include?(hash_algorithm_name)
       conf[key].gsub(' ', '').split(',').each do |record_key|
-        @hash_keys.store(record_key, hash_algorithm_name)
+        @hash_keys.store(record_key.split('.'), hash_algorithm_name)
       end
     end
 
@@ -58,8 +58,7 @@ class Fluent::AnonymizerOutput < Fluent::Output
   def emit(tag, es, chain)
     es.each do |time, record|
       @hash_keys.each do |hash_key, hash_algorithm|
-        next unless record.include?(hash_key)
-        record[hash_key] = filter_anonymize_record(record[hash_key], hash_algorithm)
+        record = filter_anonymize_record(record, hash_key, hash_algorithm)
       end
       emit_tag = tag.dup
       filter_record(emit_tag, time, record)
@@ -68,8 +67,18 @@ class Fluent::AnonymizerOutput < Fluent::Output
     chain.next
   end
 
+  def filter_anonymize_record(record, key, hash_algorithm)
+    if record.has_key?(key.first)
+      if key.size == 1
+        record[key.first] = filter_anonymize_value(record[key.first], hash_algorithm)
+      else
+        record[key.first] = filter_anonymize_record(record[key.first], key[1..-1], hash_algorithm)
+      end
+    end
+    return record
+  end
 
-  def filter_anonymize_record(data, hash_algorithm)
+  def filter_anonymize_value(data, hash_algorithm)
     begin
       if data.is_a?(Array)
         data = data.collect { |v| anonymize(v, hash_algorithm, @hash_salt) }
@@ -96,3 +105,4 @@ class Fluent::AnonymizerOutput < Fluent::Output
     end
   end
 end
+

data/test/plugin/test_out_anonymizer.rb

@@ -47,7 +47,6 @@ class AnonymizerOutputTest < Test::Unit::TestCase
     end
     emits = d1.emits
     assert_equal 1, emits.length
-    p emits[0]
     assert_equal 'anonymized.access', emits[0][0] # tag
     assert_equal '10.102.3.0', emits[0][2]['host']
     assert_equal 'e738cbde82a514dc60582cd467c240ed', emits[0][2]['data_for_md5']
@@ -77,7 +76,6 @@ class AnonymizerOutputTest < Test::Unit::TestCase
     end
     emits = d1.emits
     assert_equal 1, emits.length
-    p emits[0]
     assert_equal 'anonymized.access', emits[0][0] # tag
     assert_equal '10.102.0.0', emits[0][2]['host']
     assert_equal '10.102.0.0', emits[0][2]['host2']
@@ -87,6 +85,35 @@ class AnonymizerOutputTest < Test::Unit::TestCase
     assert_equal 'signup', emits[0][2]['action']
   end
 
+  def test_emit_nested_keys
+    d1 = create_driver(%[
+      sha1_keys         nested.data,nested.nested.data
+      ipaddr_mask_keys  hosts.host1
+      ipv4_mask_subnet  16
+      remove_tag_prefix input.
+      add_tag_prefix    anonymized.
+    ], 'input.access')
+    d1.run do
+      d1.emit({
+        'hosts' => {
+          'host1' => '10.102.3.80',
+        },
+        'nested' => {
+          'data' => '12345',
+          'nested' => {
+            'data' => '12345'
+          }
+        }
+      })
+    end
+    emits = d1.emits
+    assert_equal 1, emits.length
+    assert_equal 'anonymized.access', emits[0][0] # tag
+    assert_equal '10.102.0.0', emits[0][2]['hosts']['host1']
+    assert_equal '774472f0dc892f0b3299cae8dadacd0a74ba59d7', emits[0][2]['nested']['data']
+    assert_equal '774472f0dc892f0b3299cae8dadacd0a74ba59d7', emits[0][2]['nested']['nested']['data']
+  end
+
   def test_emit_nest_value
     d1 = create_driver(%[
       sha1_keys         array,hash
@@ -103,7 +130,6 @@ class AnonymizerOutputTest < Test::Unit::TestCase
     end
     emits = d1.emits
     assert_equal 1, emits.length
-    p emits[0]
     assert_equal 'anonymized.access', emits[0][0] # tag
     assert_equal '10.102.3.0', emits[0][2]['host']
     assert_equal ["c1628fc0d473cb21b15607c10bdcad19d1a42e24", "ea87abc249f9f2d430edb816514bffeffd3e698e"], emits[0][2]['array']
@@ -125,7 +151,6 @@ class AnonymizerOutputTest < Test::Unit::TestCase
     end
     emits = d1.emits
     assert_equal 3, emits.length
-    p emits
     assert_equal 'anonymized.access', emits[0][0] # tag
     assert_equal '10.102.3.0', emits[0][2]['host']
     assert_equal '::ffff:129.0.0.0', emits[1][2]['host']
@@ -144,7 +169,6 @@ class AnonymizerOutputTest < Test::Unit::TestCase
     end
     emits = d1.emits
     assert_equal 1, emits.length
-    p emits[0]
     assert_equal 'anonymized.message', emits[0][0] # tag
     assert_equal '774472f0dc892f0b3299cae8dadacd0a74ba59d7', emits[0][2]['member_id']
   end
@@ -162,8 +186,8 @@ class AnonymizerOutputTest < Test::Unit::TestCase
     end
     emits = d1.emits
     assert_equal 1, emits.length
-    p emits[0]
     assert_equal 'anonymized.access', emits[0][0] # tag
     assert_equal '774472f0dc892f0b3299cae8dadacd0a74ba59d7', emits[0][2]['member_id']
   end
 end
+

metadata

@@ -1,69 +1,78 @@
 --- !ruby/object:Gem::Specification
 name: fluent-plugin-anonymizer
 version: !ruby/object:Gem::Version
-  version: 0.2.2
+  version: 0.3.0
+  prerelease: 
 platform: ruby
 authors:
 - Kentaro Yoshida
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2014-05-22 00:00:00.000000000 Z
+date: 2014-12-08 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
   requirement: !ruby/object:Gem::Requirement
+    none: false
     requirements:
-    - - ">="
+    - - ! '>='
       - !ruby/object:Gem::Version
         version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
+    none: false
     requirements:
-    - - ">="
+    - - ! '>='
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
   name: rake
   requirement: !ruby/object:Gem::Requirement
+    none: false
     requirements:
-    - - ">="
+    - - ! '>='
       - !ruby/object:Gem::Version
         version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
+    none: false
     requirements:
-    - - ">="
+    - - ! '>='
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
   name: fluentd
   requirement: !ruby/object:Gem::Requirement
+    none: false
     requirements:
-    - - ">="
+    - - ! '>='
       - !ruby/object:Gem::Version
         version: '0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
+    none: false
     requirements:
-    - - ">="
+    - - ! '>='
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
   name: fluent-mixin-rewrite-tag-name
   requirement: !ruby/object:Gem::Requirement
+    none: false
     requirements:
-    - - ">="
+    - - ! '>='
       - !ruby/object:Gem::Version
         version: '0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
+    none: false
     requirements:
-    - - ">="
+    - - ! '>='
       - !ruby/object:Gem::Version
         version: '0'
 description: 
@@ -73,8 +82,8 @@ executables: []
 extensions: []
 extra_rdoc_files: []
 files:
-- ".gitignore"
-- ".travis.yml"
+- .gitignore
+- .travis.yml
 - Gemfile
 - LICENSE
 - README.md
@@ -86,26 +95,27 @@ files:
 homepage: https://github.com/y-ken/fluent-plugin-anonymizer
 licenses:
 - Apache License, Version 2.0
-metadata: {}
 post_install_message: 
 rdoc_options: []
 require_paths:
 - lib
 required_ruby_version: !ruby/object:Gem::Requirement
+  none: false
   requirements:
-  - - ">="
+  - - ! '>='
     - !ruby/object:Gem::Version
       version: '0'
 required_rubygems_version: !ruby/object:Gem::Requirement
+  none: false
   requirements:
-  - - ">="
+  - - ! '>='
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
 rubyforge_project: 
-rubygems_version: 2.2.2
+rubygems_version: 1.8.23
 signing_key: 
-specification_version: 4
+specification_version: 3
 summary: Fluentd filter output plugin to anonymize records with HMAC of MD5/SHA1/SHA256/SHA384/SHA512
   algorithms. This data masking plugin protects privacy data such as UserID, Email,
   Phone number, IPv4/IPv6 address and so on.

checksums.yaml

@@ -1,7 +0,0 @@
----
-SHA1:
-  metadata.gz: 45564782ff7fbdd7681ead462d17b18801158616
-  data.tar.gz: bec14d50db16b39fa28a9a9faa5c408606f31db6
-SHA512:
-  metadata.gz: e4a058101e442e58acfabfd0b372cb48bf60b4e9110041daa26b86e39a24a33cc43592156218f6f850b8a488900bef4c41d932dfcef9c496e1af8d56a71f7eb3
-  data.tar.gz: 24eff682117a35d166d9da9738203d794e8a8646479c8314389b870e624127a9a71836ed2ca5f174b5d5db402e0ebd5b8fd09e062c0230ff58fdaf8dd3054d45