ngcp-panel

Commit Graph

Author	SHA1	Message	Date
Rene Krenn	cae5270af5	TT#56340 panel logline obfuscation adds gdpr obfuscation quoting for: + subscriber numbers + subscriber ip addresses + subscriber usernames + any logmessage "DATA": query parameters, form data, response data + subscriber uuid's + call id's + callforward sip uri's the quoting is centralized by $c->qs() ("quote sensitive"), using catalyst plugin mechanism. escape symbols are set to « (\x{ab}) and » (\x{bb}). generate_logfile_data_inventory.pl was modified to mark loglines with "gdpr affected" status, if $c->qs() was used in a log message. Change-Id: I0f42d7992594232ae33e5666b0a64009211c5b76	6 years ago
Rene Krenn	adabefc356	TT#52987 TT#56006 logfile data inventory generator this tool automatically extracts any log message emmitted by ngcp admin-panel/rest-api. the script uses two approaches: 1. log messages emitted by catalyst logging facilities ($c->log) directly: simple regex-based extraction of c->log->(debug\|error\|..) invocations. 2. dynamic log messages emitted by invocations of the Utils/Message.pm helper methods: this was implemented using a static code analyzing technique. the script creates a loginventory .yml file for each of the channels currently defined in rsyslog.conf: scan for $c->log: method invocations: 815 identified messages: 815 distinct variables: 308 scan for NGCP::Panel::Utils::Message: method invocations: 703 identified messages: 2100 distinct variables: 134 log inventory .yml output: panel-debug.yml: 367 messages api.yml: 5 messages panel.yml: 2543 messages Change-Id: Ia24632076421899a96819d8cf9c5da3bede13efb	6 years ago

Author

SHA1

Message

Date

Rene Krenn

cae5270af5

TT#56340 panel logline obfuscation

adds gdpr obfuscation quoting for:

+ subscriber numbers
+ subscriber ip addresses
+ subscriber usernames
+ any logmessage "DATA": query parameters, form data, response data
+ subscriber uuid's
+ call id's
+ callforward sip uri's

the quoting is centralized by $c->qs() ("quote sensitive"), using
catalyst plugin mechanism.

escape symbols are set to « (\x{ab}) and » (\x{bb}).

generate_logfile_data_inventory.pl was modified to mark loglines
with "gdpr affected" status, if $c->qs() was used in a log message.

Change-Id: I0f42d7992594232ae33e5666b0a64009211c5b76

Rene Krenn

adabefc356

TT#52987 TT#56006 logfile data inventory generator

this tool automatically extracts any log message emmitted
by ngcp admin-panel/rest-api.

the script uses two approaches:

1. log messages emitted by catalyst logging facilities
   ($c->log) directly:

   simple regex-based extraction of c->log->(debug|error|..)
   invocations.

2. dynamic log messages emitted by invocations of the
   Utils/Message.pm helper methods:

   this was implemented using a static code analyzing technique.

the script creates a loginventory .yml file for each of the
channels currently defined in rsyslog.conf:

  scan for $c->log:
    method invocations: 815
    identified messages: 815
    distinct variables: 308
  scan for NGCP::Panel::Utils::Message:
    method invocations: 703
    identified messages: 2100
    distinct variables: 134
  log inventory .yml output:
    panel-debug.yml: 367 messages
    api.yml: 5 messages
    panel.yml: 2543 messages

Change-Id: Ia24632076421899a96819d8cf9c5da3bede13efb

2 Commits (mr11.5)