Add an headerBlacklist option

[maxday]

Hello !

The use case here is to prevent logging some sensitive content stored in headers (such as cookies or authorization bearer tokens)

I know this is already achievable using requestFilter option, but it seems to me that obfuscating headers is a common practice which should not require extra code in requestFilter.

What do you think ?

Content of this PR :

• new option : headerBlacklist
• default option value : []
• tests
• deletion of one duplicated test

Thanks for reviewing this PR, let me know what do you think, I tried to ship production code ready but any comments is appreciated.

:)

[maxday]

Hi, @golopot @bithavoc
Did you get a chance to review this PR ?
Thanks !

[bithavoc]

@maxday Sorry I missed this. looks good, I see multiple commits though, want me to squash and merge or do you prefer to squash them yourself?

[maxday]

@bithavoc no worries, you can squash and merge from your side !
thanks

[bithavoc]

Released express-winston@3.3.0

Thank you @maxday

[alokrajiv]

Think the typescript def for this really useful LoggerOption was missed. @bithavoc I've added a PR #228. Would you be able to help release it, if it looks fine?

Thanks for the wonderful PR @maxday. ( and @bithavoc ofcourse- for the package itself!