diff --git a/docker/.env.example b/docker/.env.example index dab25248..2240edeb 100644 --- a/docker/.env.example +++ b/docker/.env.example @@ -38,6 +38,8 @@ SECRETKEY_PATH=/root/.flowise # DEBUG=true LOG_PATH=/root/.flowise/logs # LOG_LEVEL=info #(error | warn | info | verbose | debug) +# LOG_SANITIZE_BODY_FIELDS=password,pwd,pass,secret,token,apikey,api_key,accesstoken,access_token,refreshtoken,refresh_token,clientsecret,client_secret,privatekey,private_key,secretkey,secret_key,auth,authorization,credential,credentials +# LOG_SANITIZE_HEADER_FIELDS=authorization,x-api-key,x-auth-token,cookie # TOOL_FUNCTION_BUILTIN_DEP=crypto,fs # TOOL_FUNCTION_EXTERNAL_DEP=moment,lodash # ALLOW_BUILTIN_DEP=false diff --git a/docker/docker-compose-queue-prebuilt.yml b/docker/docker-compose-queue-prebuilt.yml index 0063eeb1..6d694159 100644 --- a/docker/docker-compose-queue-prebuilt.yml +++ b/docker/docker-compose-queue-prebuilt.yml @@ -46,6 +46,8 @@ services: - DEBUG=${DEBUG} - LOG_PATH=${LOG_PATH} - LOG_LEVEL=${LOG_LEVEL} + - LOG_SANITIZE_BODY_FIELDS=${LOG_SANITIZE_BODY_FIELDS} + - LOG_SANITIZE_HEADER_FIELDS=${LOG_SANITIZE_HEADER_FIELDS} # CUSTOM TOOL/FUNCTION DEPENDENCIES - TOOL_FUNCTION_BUILTIN_DEP=${TOOL_FUNCTION_BUILTIN_DEP} @@ -190,6 +192,8 @@ services: - DEBUG=${DEBUG} - LOG_PATH=${LOG_PATH} - LOG_LEVEL=${LOG_LEVEL} + - LOG_SANITIZE_BODY_FIELDS=${LOG_SANITIZE_BODY_FIELDS} + - LOG_SANITIZE_HEADER_FIELDS=${LOG_SANITIZE_HEADER_FIELDS} # CUSTOM TOOL/FUNCTION DEPENDENCIES - TOOL_FUNCTION_BUILTIN_DEP=${TOOL_FUNCTION_BUILTIN_DEP} diff --git a/docker/docker-compose.yml b/docker/docker-compose.yml index f66d7106..e43283b1 100644 --- a/docker/docker-compose.yml +++ b/docker/docker-compose.yml @@ -31,6 +31,8 @@ services: - DEBUG=${DEBUG} - LOG_PATH=${LOG_PATH} - LOG_LEVEL=${LOG_LEVEL} + - LOG_SANITIZE_BODY_FIELDS=${LOG_SANITIZE_BODY_FIELDS} + - LOG_SANITIZE_HEADER_FIELDS=${LOG_SANITIZE_HEADER_FIELDS} # CUSTOM TOOL/FUNCTION DEPENDENCIES - TOOL_FUNCTION_BUILTIN_DEP=${TOOL_FUNCTION_BUILTIN_DEP} diff --git a/docker/worker/.env.example b/docker/worker/.env.example index 769286df..0e4b0c0d 100644 --- a/docker/worker/.env.example +++ b/docker/worker/.env.example @@ -38,6 +38,8 @@ SECRETKEY_PATH=/root/.flowise # DEBUG=true LOG_PATH=/root/.flowise/logs # LOG_LEVEL=info #(error | warn | info | verbose | debug) +# LOG_SANITIZE_BODY_FIELDS=password,pwd,pass,secret,token,apikey,api_key,accesstoken,access_token,refreshtoken,refresh_token,clientsecret,client_secret,privatekey,private_key,secretkey,secret_key,auth,authorization,credential,credentials +# LOG_SANITIZE_HEADER_FIELDS=authorization,x-api-key,x-auth-token,cookie # TOOL_FUNCTION_BUILTIN_DEP=crypto,fs # TOOL_FUNCTION_EXTERNAL_DEP=moment,lodash # ALLOW_BUILTIN_DEP=false diff --git a/docker/worker/docker-compose.yml b/docker/worker/docker-compose.yml index 952dc04c..da9e0579 100644 --- a/docker/worker/docker-compose.yml +++ b/docker/worker/docker-compose.yml @@ -31,6 +31,8 @@ services: - DEBUG=${DEBUG} - LOG_PATH=${LOG_PATH} - LOG_LEVEL=${LOG_LEVEL} + - LOG_SANITIZE_BODY_FIELDS=${LOG_SANITIZE_BODY_FIELDS} + - LOG_SANITIZE_HEADER_FIELDS=${LOG_SANITIZE_HEADER_FIELDS} # CUSTOM TOOL/FUNCTION DEPENDENCIES - TOOL_FUNCTION_BUILTIN_DEP=${TOOL_FUNCTION_BUILTIN_DEP} diff --git a/packages/server/src/utils/logger.ts b/packages/server/src/utils/logger.ts index 161129ca..a4b060a7 100644 --- a/packages/server/src/utils/logger.ts +++ b/packages/server/src/utils/logger.ts @@ -194,6 +194,7 @@ requestLogger = createLogger({ }) function getSensitiveBodyFields(): string[] { + if (!process.env.LOG_SANITIZE_BODY_FIELDS) return [] return (process.env.LOG_SANITIZE_BODY_FIELDS as string) .toLowerCase() .split(',') @@ -201,6 +202,7 @@ function getSensitiveBodyFields(): string[] { } function getSensitiveHeaderFields(): string[] { + if (!process.env.LOG_SANITIZE_HEADER_FIELDS) return [] return (process.env.LOG_SANITIZE_HEADER_FIELDS as string) .toLowerCase() .split(',')