@optimizely-opal/opal-tool-ocp-sdk 1.0.0-beta.2 → 1.0.0-beta.4

package/dist/logging/ToolLogger.js

@@ -0,0 +1,153 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ToolLogger = void 0;
+const app_sdk_1 = require("@zaiusinc/app-sdk");
+/**
+ * Utility class for logging Opal tool requests and responses with security considerations
+ */
+class ToolLogger {
+    static SENSITIVE_FIELDS = [
+        // Authentication / secrets
+        'password',
+        'pass',
+        'secret',
+        'key',
+        'token',
+        'auth',
+        'credentials',
+        'access_token',
+        'refresh_token',
+        'api_key',
+        'private_key',
+        'client_secret',
+        'session_token',
+        'authorization',
+        // Payment-related
+        'card_number',
+        'credit_card',
+        'cvv',
+        'expiry_date',
+        // Personal info
+        'ssn', // social security number
+        'nid', // national ID
+        'passport',
+        'dob', // date of birth
+        'email',
+        'phone',
+        'address',
+        // Misc / environment
+        'otp',
+        'pin',
+        'security_answer',
+        'security_question',
+        'signing_key',
+        'encryption_key',
+        'jwt',
+        'bearer_token'
+    ];
+    static MAX_PARAM_LENGTH = 100;
+    static MAX_ARRAY_ITEMS = 10;
+    /**
+     * Redacts sensitive data from an object
+     */
+    static redactSensitiveData(data, maxDepth = 5) {
+        if (maxDepth <= 0) {
+            return '[MAX_DEPTH_EXCEEDED]';
+        }
+        if (data === null || data === undefined) {
+            return data;
+        }
+        if (typeof data === 'string') {
+            return data.length > this.MAX_PARAM_LENGTH
+                ? `${data.substring(0, this.MAX_PARAM_LENGTH)}... (truncated, ${data.length} chars total)`
+                : data;
+        }
+        if (typeof data === 'number' || typeof data === 'boolean') {
+            return data;
+        }
+        if (Array.isArray(data)) {
+            const truncated = data.slice(0, this.MAX_ARRAY_ITEMS);
+            const result = truncated.map((item) => this.redactSensitiveData(item, maxDepth - 1));
+            if (data.length > this.MAX_ARRAY_ITEMS) {
+                result.push(`... (${data.length - this.MAX_ARRAY_ITEMS} more items truncated)`);
+            }
+            return result;
+        }
+        if (typeof data === 'object') {
+            const result = {};
+            for (const [key, value] of Object.entries(data)) {
+                // Check if this field contains sensitive data
+                const isSensitive = this.isSensitiveField(key);
+                if (isSensitive) {
+                    result[key] = '[REDACTED]';
+                }
+                else {
+                    result[key] = this.redactSensitiveData(value, maxDepth - 1);
+                }
+            }
+            return result;
+        }
+        return data;
+    }
+    /**
+     * Checks if a field name is considered sensitive
+     */
+    static isSensitiveField(fieldName) {
+        const lowerKey = fieldName.toLowerCase();
+        return this.SENSITIVE_FIELDS.some((sensitiveField) => lowerKey.includes(sensitiveField));
+    }
+    /**
+     * Creates a summary of request parameters
+     */
+    static createParameterSummary(params) {
+        if (!params) {
+            return null;
+        }
+        return this.redactSensitiveData(params);
+    }
+    /**
+     * Calculates content length of response data
+     */
+    static calculateContentLength(response) {
+        if (!response) {
+            return 0;
+        }
+        try {
+            return response.bodyAsU8Array?.length || 'unknown';
+        }
+        catch {
+            return 'unknown';
+        }
+    }
+    /**
+     * Logs an incoming request
+     */
+    static logRequest(req) {
+        const params = req.bodyJSON && req.bodyJSON.parameters ? req.bodyJSON.parameters : req.bodyJSON;
+        const requestLog = {
+            event: 'opal_tool_request',
+            path: req.path,
+            parameters: this.createParameterSummary(params)
+        };
+        // Log with Zaius audience so developers only see requests for accounts they have access to
+        app_sdk_1.logger.info(app_sdk_1.LogVisibility.Zaius, JSON.stringify(requestLog));
+    }
+    /**
+     * Logs a successful response
+     */
+    static logResponse(req, response, processingTimeMs) {
+        const responseLog = {
+            event: 'opal_tool_response',
+            path: req.path,
+            duration: processingTimeMs ? `${processingTimeMs}ms` : undefined,
+            status: response.status,
+            contentType: response.headers?.get('content-type') || 'unknown',
+            contentLength: this.calculateContentLength(response),
+            success: response.status >= 200 && response.status < 300
+        };
+        // Log with Zaius audience so developers only see requests for accounts they have access to
+        app_sdk_1.logger.info(app_sdk_1.LogVisibility.Zaius, JSON.stringify(responseLog));
+    }
+}
+exports.ToolLogger = ToolLogger;
+//# sourceMappingURL=ToolLogger.js.map

package/dist/logging/ToolLogger.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ToolLogger.js","sourceRoot":"","sources":["../../src/logging/ToolLogger.ts"],"names":[],"mappings":";;;AAAA,+CAA0D;AAG1D;;GAEG;AACH,MAAa,UAAU;IACb,MAAM,CAAU,gBAAgB,GAAG;QACzC,2BAA2B;QAC3B,UAAU;QACV,MAAM;QACN,QAAQ;QACR,KAAK;QACL,OAAO;QACP,MAAM;QACN,aAAa;QACb,cAAc;QACd,eAAe;QACf,SAAS;QACT,aAAa;QACb,eAAe;QACf,eAAe;QACf,eAAe;QAEf,kBAAkB;QAClB,aAAa;QACb,aAAa;QACb,KAAK;QACL,aAAa;QAEb,gBAAgB;QAChB,KAAK,EAAE,yBAAyB;QAChC,KAAK,EAAE,cAAc;QACrB,UAAU;QACV,KAAK,EAAE,gBAAgB;QACvB,OAAO;QACP,OAAO;QACP,SAAS;QAET,qBAAqB;QACrB,KAAK;QACL,KAAK;QACL,iBAAiB;QACjB,mBAAmB;QACnB,aAAa;QACb,gBAAgB;QAChB,KAAK;QACL,cAAc;KACf,CAAC;IAEM,MAAM,CAAU,gBAAgB,GAAG,GAAG,CAAC;IACvC,MAAM,CAAU,eAAe,GAAG,EAAE,CAAC;IAE7C;;OAEG;IACK,MAAM,CAAC,mBAAmB,CAAC,IAAS,EAAE,QAAQ,GAAG,CAAC;QACxD,IAAI,QAAQ,IAAI,CAAC,EAAE,CAAC;YAClB,OAAO,sBAAsB,CAAC;QAChC,CAAC;QAED,IAAI,IAAI,KAAK,IAAI,IAAI,IAAI,KAAK,SAAS,EAAE,CAAC;YACxC,OAAO,IAAI,CAAC;QACd,CAAC;QAED,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;YAC7B,OAAO,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC,gBAAgB;gBACxC,CAAC,CAAC,GAAG,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,IAAI,CAAC,gBAAgB,CAAC,mBAAmB,IAAI,CAAC,MAAM,eAAe;gBAC1F,CAAC,CAAC,IAAI,CAAC;QACX,CAAC;QAED,IAAI,OAAO,IAAI,KAAK,QAAQ,IAAI,OAAO,IAAI,KAAK,SAAS,EAAE,CAAC;YAC1D,OAAO,IAAI,CAAC;QACd,CAAC;QAED,IAAI,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;YACxB,MAAM,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,IAAI,CAAC,eAAe,CAAC,CAAC;YACtD,MAAM,MAAM,GAAG,SAAS,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,mBAAmB,CAAC,IAAI,EAAE,QAAQ,GAAG,CAAC,CAAC,CAAC,CAAC;YACrF,IAAI,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC,eAAe,EAAE,CAAC;gBACvC,MAAM,CAAC,IAAI,CAAC,QAAQ,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC,eAAe,wBAAwB,CAAC,CAAC;YAClF,CAAC;YACD,OAAO,MAAM,CAAC;QAChB,CAAC;QAED,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;YAC7B,MAAM,MAAM,GAAQ,EAAE,CAAC;YACvB,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;gBAChD,8CAA8C;gBAC9C,MAAM,WAAW,GAAG,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,CAAC;gBAE/C,IAAI,WAAW,EAAE,CAAC;oBAChB,MAAM,CAAC,GAAG,CAAC,GAAG,YAAY,CAAC;gBAC7B,CAAC;qBAAM,CAAC;oBACN,MAAM,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC,mBAAmB,CAAC,KAAK,EAAE,QAAQ,GAAG,CAAC,CAAC,CAAC;gBAC9D,CAAC;YACH,CAAC;YACD,OAAO,MAAM,CAAC;QAChB,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;OAEG;IACK,MAAM,CAAC,gBAAgB,CAAC,SAAiB;QAC/C,MAAM,QAAQ,GAAG,SAAS,CAAC,WAAW,EAAE,CAAC;QACzC,OAAO,IAAI,CAAC,gBAAgB,CAAC,IAAI,CAAC,CAAC,cAAc,EAAE,EAAE,CACnD,QAAQ,CAAC,QAAQ,CAAC,cAAc,CAAC,CAClC,CAAC;IACJ,CAAC;IAED;;OAEG;IACK,MAAM,CAAC,sBAAsB,CAAC,MAAW;QAC/C,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,OAAO,IAAI,CAAC;QACd,CAAC;QAED,OAAO,IAAI,CAAC,mBAAmB,CAAC,MAAM,CAAC,CAAC;IAC1C,CAAC;IAED;;OAEG;IACK,MAAM,CAAC,sBAAsB,CAAC,QAAuB;QAC3D,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,OAAO,CAAC,CAAC;QACX,CAAC;QAED,IAAI,CAAC;YACH,OAAO,QAAQ,CAAC,aAAa,EAAE,MAAM,IAAI,SAAS,CAAC;QACrD,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,SAAS,CAAC;QACnB,CAAC;IACH,CAAC;IAED;;OAEG;IACI,MAAM,CAAC,UAAU,CACtB,GAAgB;QAEhB,MAAM,MAAM,GAAG,GAAG,CAAC,QAAQ,IAAI,GAAG,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC;QAChG,MAAM,UAAU,GAAG;YACjB,KAAK,EAAE,mBAAmB;YAC1B,IAAI,EAAE,GAAG,CAAC,IAAI;YACd,UAAU,EAAE,IAAI,CAAC,sBAAsB,CAAC,MAAM,CAAC;SAChD,CAAC;QAEF,2FAA2F;QAC3F,gBAAM,CAAC,IAAI,CAAC,uBAAa,CAAC,KAAK,EAAE,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC,CAAC;IAC/D,CAAC;IAED;;OAEG;IACI,MAAM,CAAC,WAAW,CACvB,GAAgB,EAChB,QAAsB,EACtB,gBAAyB;QAEzB,MAAM,WAAW,GAAG;YAClB,KAAK,EAAE,oBAAoB;YAC3B,IAAI,EAAE,GAAG,CAAC,IAAI;YACd,QAAQ,EAAE,gBAAgB,CAAC,CAAC,CAAC,GAAG,gBAAgB,IAAI,CAAC,CAAC,CAAC,SAAS;YAChE,MAAM,EAAE,QAAQ,CAAC,MAAM;YACvB,WAAW,EAAE,QAAQ,CAAC,OAAO,EAAE,GAAG,CAAC,cAAc,CAAC,IAAI,SAAS;YAC/D,aAAa,EAAE,IAAI,CAAC,sBAAsB,CAAC,QAAQ,CAAC;YACpD,OAAO,EAAE,QAAQ,CAAC,MAAM,IAAI,GAAG,IAAI,QAAQ,CAAC,MAAM,GAAG,GAAG;SACzD,CAAC;QAEF,2FAA2F;QAC3F,gBAAM,CAAC,IAAI,CAAC,uBAAa,CAAC,KAAK,EAAE,IAAI,CAAC,SAAS,CAAC,WAAW,CAAC,CAAC,CAAC;IAChE,CAAC;;AAzKH,gCA0KC"}

package/dist/logging/ToolLogger.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=ToolLogger.test.d.ts.map

package/dist/logging/ToolLogger.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ToolLogger.test.d.ts","sourceRoot":"","sources":["../../src/logging/ToolLogger.test.ts"],"names":[],"mappings":""}