def test_non_utf8_encoding(elasticapm_client, http_test_data):
broken = compat.b("broken=") + u"aéöüa".encode("latin-1")
http_test_data["context"]["request"]["headers"]["cookie"] = broken
result = processors.sanitize_http_request_cookies(elasticapm_client,
http_test_data)
assert result["context"]["request"]["headers"][
"cookie"] == u"broken=a\ufffd\ufffd\ufffda"
def test_sanitize_http_request_cookies(elasticapm_client, custom_field,
expected_header_cookies,
http_test_data):
http_test_data["context"]["request"]["headers"][
"cookie"] = "foo=bar; password=12345; secret=12345; csrftoken=abc; custom-sensitive-cookie=123"
result = processors.sanitize_http_request_cookies(elasticapm_client,
http_test_data)
expected = {
"foo": "bar",
"password": processors.MASK,
"secret": processors.MASK,
"sessionid": processors.MASK,
}
expected.update(custom_field)
assert result["context"]["request"]["cookies"] == expected
assert result["context"]["request"]["headers"][
"cookie"] == expected_header_cookies
http_test_data["context"]["request"]["headers"].pop("cookie")
http_test_data["context"]["request"]["headers"][
"Cookie"] = "foo=bar; password=12345; secret=12345; csrftoken=abc; custom-sensitive-cookie=123"
result = processors.sanitize_http_request_cookies(elasticapm_client,
http_test_data)
expected = {
"foo": "bar",
"password": processors.MASK,
"secret": processors.MASK,
"sessionid": processors.MASK,
}
expected.update(custom_field)
assert result["context"]["request"]["cookies"] == expected
assert result["context"]["request"]["headers"][
"Cookie"] == expected_header_cookies
def test_sanitize_http_request_cookies(http_test_data):
http_test_data['context']['request']['headers']['cookie'] =\
'foo=bar; password=12345; the_secret=12345; csrftoken=abc'
result = processors.sanitize_http_request_cookies(None, http_test_data)
assert result['context']['request']['cookies'] == {
'foo': 'bar',
'password': processors.MASK,
'the_secret': processors.MASK,
'sessionid': processors.MASK,
'a_password_here': processors.MASK,
}
assert (result['context']['request']['headers']['cookie'] ==
'foo=bar; password={0}; the_secret={0}; csrftoken={0}'.format(processors.MASK))
def test_sanitize_http_request_cookies(http_test_data):
http_test_data["context"]["request"]["headers"][
"cookie"] = "foo=bar; password=12345; the_secret=12345; csrftoken=abc"
result = processors.sanitize_http_request_cookies(None, http_test_data)
assert result["context"]["request"]["cookies"] == {
"foo": "bar",
"password": processors.MASK,
"the_secret": processors.MASK,
"sessionid": processors.MASK,
"a_password_here": processors.MASK,
}
assert result["context"]["request"]["headers"][
"cookie"] == "foo=bar; password={0}; the_secret={0}; csrftoken={0}".format(
processors.MASK)
