Startsida Utforska Hjälp
Logga in
wiki
/
weseek__growi
spegling av https://github.com/weseek/growi
2
0
Fork 0
Filer Ärenden 0 Wiki
Träd: ee341e0782
Grenar Taggar
weseek__growi
/
apps
/
app
/
src
/
features
/
opentelemetry
/
server
/
anonymization
/
utils
/
anonymize-query-params.ts

anonymize-query-params.ts 2.0 KB
Historik

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263 
  1. import { diag } from '@opentelemetry/api';
    2. 

  2. 

  3. const logger = diag.createComponentLogger({ namespace: 'growi:anonymization:anonymize-query-params' });
    4. 

  4. 

  5. /**
    6. 

  6.  * Try to parse JSON array, return null if invalid
    7. 

  7.  */
    8. 

  8. function tryParseJsonArray(value: string): unknown[] | null {
    9. 

  9.   try {
    10. 

  10.     const parsed = JSON.parse(value);
    11. 

  11.     return Array.isArray(parsed) ? parsed : null;
    12. 

  12.   }
    13. 

  13.   catch {
    14. 

  14.     return null;
    15. 

  15.   }
    16. 

  16. }
    17. 

  17. 

  18. /**
    19. 

  19.  * Anonymize specific query parameters in HTTP target URL
    20. 

  20.  * @param target - The HTTP target URL with query parameters
    21. 

  21.  * @param paramNames - Array of parameter names to anonymize
    22. 

  22.  * @returns Anonymized HTTP target URL
    23. 

  23.  */
    24. 

  24. export function anonymizeQueryParams(target: string, paramNames: string[]): string {
    25. 

  25.   try {
    26. 

  26.     const url = new URL(target, 'http://localhost');
    27. 

  27.     const searchParams = new URLSearchParams(url.search);
    28. 

  28.     let hasChange = false;
    29. 

  29. 

  30.     for (const paramName of paramNames) {
    31. 

  31.       // Handle regular parameter (including JSON arrays)
    32. 

  32.       if (searchParams.has(paramName)) {
    33. 

  33.         const value = searchParams.get(paramName);
    34. 

  34.         // Anonymize parameter even if it's empty (null check only)
    35. 

  35.         if (value !== null) {
    36. 

  36.           let replacement = '[ANONYMIZED]';
    37. 

  37.           if (value.startsWith('[') && value.endsWith(']')) {
    38. 

  38.             const jsonArray = tryParseJsonArray(value);
    39. 

  39.             if (jsonArray && jsonArray.length > 0) {
    40. 

  40.               replacement = '["[ANONYMIZED]"]';
    41. 

  41.             }
    42. 

  42.           }
    43. 

  43.           searchParams.set(paramName, replacement);
    44. 

  44.           hasChange = true;
    45. 

  45.         }
    46. 

  46.       }
    47. 

  47. 

  48.       // Handle array-style parameters (paramName[])
    49. 

  49.       const arrayParam = `${paramName}[]`;
    50. 

  50.       if (searchParams.has(arrayParam)) {
    51. 

  51.         searchParams.delete(arrayParam);
    52. 

  52.         searchParams.set(arrayParam, '[ANONYMIZED]');
    53. 

  53.         hasChange = true;
    54. 

  54.       }
    55. 

  55.     }
    56. 

  56. 

  57.     return hasChange ? `${url.pathname}?${searchParams.toString()}${url.hash}` : target;
    58. 

  58.   }
    59. 

  59.   catch (error) {
    60. 

  60.     logger.warn(`Failed to anonymize query parameters [${paramNames.join(', ')}]: ${error}`);
    61. 

  61.     return target;
    62. 

  62.   }
    63. 

  63. }
    64.