Skip to content

add SanitizeURL hook for safe request masking before logging #89

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 5 commits into from
May 7, 2025
Merged

add SanitizeURL hook for safe request masking before logging #89

merged 5 commits into from
May 7, 2025

Conversation

ExcpOccured
Copy link
Contributor

@ExcpOccured ExcpOccured commented May 2, 2025
edited
Loading

Summary

Adds a SanitizeURL hook to the Test struct, allowing users to modify the request (e.g., mask API keys) before logging or reporting.

Motivation

While using cute for integration tests, we found that sensitive query params like ?key=... were exposed in Allure reports.
We tried several approaches without library changes, but none masked the URLs in cute's built-in logs.

Approaches we tried

Example 1: Logging masked URL via Middleware

test.Middleware = &cute.Middleware{
    BeforeT: []cute.BeforeExecuteT{
        func(t cute.T, req *http.Request) error {
            safe := regexp.MustCompile(`key=[^&]+`).ReplaceAllString(req.URL.String(), "key=****")
            if stepper, ok := any(t).(interface {
                WithNewStep(name string, action func(stepCtx provider.StepCtx))
            }); ok {
                stepper.WithNewStep("Log masked URL", func(stepCtx provider.StepCtx) {
                    stepCtx.WithNewAttachment("Masked URL", allure.Text, []byte(safe))
                })
            }
            return nil
        },
    },
}

Worked: Added an Allure attachment.
Problem: Did not affect cute's internal request logging.

Example 2: Temporarily replacing req.URL.RawQuery

BeforeExecuteT: func(t cute.T, req *http.Request) error {
    original := req.URL.RawQuery
    req.URL.RawQuery = regexp.MustCompile(`key=[^&]+`).ReplaceAllString(original, "key=****")
    // log something
    req.URL.RawQuery = original
    return nil
},

Worked: Controlled masked URL.
Problem: Too late — cute had already logged the request.

What’s added

  • SanitizeHook type with doc.
  • Sanitizer field on Test.
  • Call to hook inside createRequest().
  • Unit test TestSanitizeURLHook.
  • Small helper sanitizeKeyParam().

Example usage

test := &cute.Test{
    SanitizeURL: func(req *http.Request) {
        q := req.URL.Query()
        q.Set("key", "****")
        req.URL.RawQuery = q.Encode()
    },
}

Notes

  • This feature is opt-in.
  • It minimally affects the codebase.
  • Open to feedback on placement or naming.

Thanks for reviewing!

@siller174
Copy link
Collaborator

Hello, thank you for your PR.
But looks like you sanitize the request too early because the request is used in further code.

cute/test.go

Line 407 in 852c9ca

resp, errs := it.makeRequest(t, req)

M.b. It's better to move it to

cute/roundtripper.go

Line 145 in 059c650

func (it *Test) addInformationRequest(t T, req *http.Request) error {
?

siller174
siller174 reviewed May 2, 2025
View reviewed changes
@siller174
Copy link
Collaborator

Also, could you please add builder for it to

cute/interface.go

Line 187 in 059c650

type RequestParams interface {
?

@ExcpOccured
Copy link
Contributor Author

ExcpOccured commented May 3, 2025
edited
Loading

Hello, thank you for your PR. But looks like you sanitize the request too early because the request is used in further code.

cute/test.go

Line 407 in 852c9ca

resp, errs := it.makeRequest(t, req)

M.b. It's better to move it to

cute/roundtripper.go

Line 145 in 059c650

func (it *Test) addInformationRequest(t T, req *http.Request) error {

?

Hi! Thanks a lot for your suggestion regarding moving the Sanitizer call into addInformationRequest.
I actually tried this approach, but it leads to an important issue image

The problem is that addInformationRequest is called after the request has already been sent over the network using httpClient.Do(req).
So by the time we reach addInformationRequest, the original (non-masked) URL has:

  • Already been passed to httpClient
  • Already been used in the curl command we generate
  • Already been attached to the test report

As a result, applying the Sanitizer only in addInformationRequest means we are masking the URL too late - the sensitive data has already been logged and sent in the real request.

@ExcpOccured
Copy link
Contributor Author

Also, could you please add builder for it to

cute/interface.go

Line 187 in 059c650

type RequestParams interface {

?

Yes, thanks for your comment, builder has been implemented - 1fa8ac8

@siller174 siller174 changed the base branch from master to v0.1.24 May 7, 2025 12:55
@siller174 siller174 merged commit bb3e50a into ozontech:v0.1.24 May 7, 2025
@siller174
Copy link
Collaborator

Hello, thank you again for your PR. I moved and modified your PR to https://github.com/ozontech/cute/pull/90/files. Could you please check it?

siller174 added a commit that referenced this pull request May 8, 2025
@siller174 @ExcpOccured
V0.1.24 (#90)
9f4583b 
* add Sanitizer hook for safe request/response masking before logging (#89)

Co-authored-by: Danil S. <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@siller174 siller174 siller174 left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@ExcpOccured @siller174