logtail-rack 0.2.1 → 0.2.2

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 73931379e41a5b92e72919963376a2f6b6b8ec06871b9a410bc6c8339228387d
-  data.tar.gz: 01b32fd44ea670b47d5d7340a8c02c1305b203332f298818dff9ec68058e79e2
+  metadata.gz: a63714ec66ecfdd4a4db3ffc637fe1b02da37422789fc7ea8617474b63f90367
+  data.tar.gz: 8fedbde00ed676731409c299e7e5183bc24daa049f21e9e5ffd7995706bc2dda
 SHA512:
-  metadata.gz: 02f9dcd2e699b1c52d9f31265bb1f77f057c8e63bab5d2e87475e7b22823a16723ef3b69e5cd99827b1d9bdf0a27db35ba7f7c3a1b7656e099a60171a0c1476d
-  data.tar.gz: 4e2a9cbb7b647f1ef6574ecea49db83616e7ea9082dec902c5bba980aaebc14a5cefa325ade3ed3a4d3085aba2c07610f8469b362560f94a5ef3bea6248e77f4
+  metadata.gz: 3bc10f2ad042d60da36ea8491f214764028e045bde28db87fb68fb7de32278fe98ddf84105deda98a07cfdfb7e9ee9ffaf46056093fa670dd35043fb2d48d69a
+  data.tar.gz: 437553fcaf79354dcb76bef63bca8c58cb1dcd8c7972f3f0204bd7c2b2aad30e0943776b78de0b307a9148643cb2974a6d5b3fc2f7a7d31b80bfc3e4d0243177

data/.github/workflows/main.yml

@@ -23,7 +23,6 @@ jobs:
           - 2.5
           - 2.4
           - 2.3
-          - 2.2
           - jruby-9.4.3.0
           - jruby-9.2.14.0
           - truffleruby-23.0.0

data/lib/logtail-rack/http_events.rb

@@ -102,23 +102,24 @@ module Logtail
             @silence_request
           end
 
-          def http_body_limit=(value)
-            @http_body_limit = value
-          end
-
-          # Accessor method for {#http_body_limit=}
-          def http_body_limit
-            @http_body_limit
-          end
-
+          # Filter sensitive HTTP headers (such as "Authorization: Bearer secret_token")
+          #
+          # Filtered HTTP header values will be sent to Better Stack as "[FILTERED]"
+          #
+          # @example
+          #   Logtail::Integrations::Rack::HTTPEvents.http_header_filters = ["Authorization"]
           def http_header_filters=(value)
-            @http_header_filters = value
+            @http_header_filters = value.map { |header_name| normalize_header_name(header_name) }
           end
 
           # Accessor method for {#http_header_filters=}
           def http_header_filters
             @http_header_filters
           end
+
+          def normalize_header_name(name)
+            name.to_s.downcase.gsub("-", "_")
+          end
         end
 
         CONTENT_LENGTH_KEY = 'Content-Length'.freeze
@@ -147,13 +148,11 @@ module Logtail
 
               http_response = HTTPResponse.new(
                 content_length: content_length,
-                headers: headers,
+                headers: filter_http_headers(headers),
                 http_context: http_context,
                 request_id: request.request_id,
                 status: status,
                 duration_ms: duration_ms,
-                body_limit: self.class.http_body_limit,
-                headers_to_sanitize: self.class.http_header_filters,
               )
 
               {
@@ -179,7 +178,7 @@ module Logtail
               http_request = HTTPRequest.new(
                 body: event_body,
                 content_length: safe_to_i(request.content_length),
-                headers: request.headers,
+                headers: filter_http_headers(request.headers),
                 host: force_encoding(request.host),
                 method: request.request_method,
                 path: request.path,
@@ -187,8 +186,6 @@ module Logtail
                 query_string: force_encoding(request.query_string),
                 request_id: request.request_id,
                 scheme: force_encoding(request.scheme),
-                body_limit: self.class.http_body_limit,
-                headers_to_sanitize: self.class.http_header_filters,
               )
 
               {
@@ -223,12 +220,10 @@ module Logtail
               http_response = HTTPResponse.new(
                 body: event_body,
                 content_length: content_length,
-                headers: headers,
+                headers: filter_http_headers(headers),
                 request_id: request.request_id,
                 status: status,
                 duration_ms: duration_ms,
-                body_limit: self.class.http_body_limit,
-                headers_to_sanitize: self.class.http_header_filters,
               )
 
               {
@@ -272,6 +267,13 @@ module Logtail
             end
           end
 
+          def filter_http_headers(headers)
+            headers.each do |name, _|
+              normalized_header_name = self.class.normalize_header_name(name)
+              headers[name] = "[FILTERED]" if self.class.http_header_filters&.include?(normalized_header_name)
+            end
+          end
+
           def safe_to_i(val)
             val.nil? ? nil : val.to_i
           end

data/lib/logtail-rack/version.rb

@@ -1,7 +1,7 @@
 module Logtail
   module Integrations
     module Rack
-      VERSION = "0.2.1"
+      VERSION = "0.2.2"
     end
   end
 end

data/logtail-ruby-rack.gemspec

@@ -12,7 +12,7 @@ Gem::Specification.new do |spec|
   spec.homepage      = "https://github.com/logtail/logtail-ruby-rack"
   spec.license       = "ISC"
 
-  spec.required_ruby_version     = '>= 2.2.10'
+  spec.required_ruby_version     = '>= 2.3'
 
   spec.metadata["homepage_uri"] = spec.homepage
   spec.metadata["source_code_uri"] = "https://github.com/logtail/logtail-ruby-rack"

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: logtail-rack
 version: !ruby/object:Gem::Version
-  version: 0.2.1
+  version: 0.2.2
 platform: ruby
 authors:
 - Logtail
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2023-08-04 00:00:00.000000000 Z
+date: 2023-08-14 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: logtail
@@ -129,7 +129,7 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: 2.2.10
+      version: '2.3'
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="