#68 hide sensitive config data from log message

geopython · May 3, 2018 · 956d3a7 · 956d3a7
1 parent b83006b
commit 956d3a7
Showing 1 changed file with 9 additions and 1 deletion.
diff --git a/stetl/util.py b/stetl/util.py
@@ -485,4 +485,12 @@ def get_dict(self, name=None, default=None):
         return result
 
     def to_string(self):
-        return repr(self.config_dict)
+        # Need to hide some sensitive values, usually used for logging
+        safe_copy = self.config_dict.copy()
+        hides = ['passw', 'pasw', 'token', 'user']
+        for key in safe_copy:
+            for hide_key in hides:
+                if hide_key in key.lower():
+                    safe_copy[key] = '<hidden>'
+
+        return repr(safe_copy)