Log redaction for sensitive input values, C side
authorDan Wells <dbw2@calvin.edu>
Wed, 10 Oct 2012 21:28:07 +0000 (17:28 -0400)
committerBill Erickson <berick@esilibrary.com>
Thu, 8 Nov 2012 17:48:24 +0000 (12:48 -0500)
commit15e9827b151f6cc9f486b09a06cbae2350f67db9
treeaec3f46c4b1b5ef8bac654d7eff950290edb8ab9
parent0bdedacf6c2a48d5ca91cd2a605a05c45d157ba9
Log redaction for sensitive input values, C side

Some service/methods deal with sensitive information (passwords,
financial, etc.).  All input values (e.g. gateway method params)
are currently logged in the activity log regardless of your log
level.  This commit will allow you to redact the params of any
method which matches a configurable set of left-anchored string
values.

This commit adds the initial config, and covers redaction of method
parameters sent through the gateway, the translator, and more general
OpenSRF C applications.

Signed-off-by: Dan Wells <dbw2@calvin.edu>
Signed-off-by: Dan Scott <dan@coffeecode.net>
examples/opensrf_core.xml.example
include/opensrf/osrf_application.h
include/opensrf/osrf_system.h
src/gateway/osrf_http_translator.c
src/gateway/osrf_json_gateway.c
src/libopensrf/osrf_application.c
src/libopensrf/osrf_system.c