首页 发现 帮助
登录
DragonOS-Community
/
triagebot
镜像自地址 https://github.com/DragonOS-Community/triagebot.git
4
0
派生 0
文件 工单管理 0 Wiki
浏览代码

Prevent Authorization header from being logged

This logs the GitHub request token into our AWS logs, which is not great. That
said this is not really all that important because AWS access is basically
"keys to the kingdom" already.
Mark Rousskov 4 年之前
父节点
9af24a8fe0
当前提交
2a16151fcd
共有 1 个文件被更改,包括 7 次插入2 次删除
分列视图 显示文件统计
  1. 7 2
      src/github.rs

+ 7 - 2
src/github.rs
查看文件 

@@ -20,12 +20,17 @@ pub struct User {
 
 impl GithubClient {
 
     async fn _send_req(&self, req: RequestBuilder) -> anyhow::Result<(Response, String)> {
 
         const MAX_ATTEMPTS: usize = 2;
 
-        log::debug!("_send_req with {:?}", req);
 
         let req_dbg = format!("{:?}", req);
 
-        let req = req
 
+        let mut req = req
 
             .build()
 
             .with_context(|| format!("building reqwest {}", req_dbg))?;
 
 
+        let auth = req.headers_mut().remove(AUTHORIZATION);
 
+        log::debug!("_send_req with {:?}", auth);
 
+        if let Some(auth) = auth {
 
+            req.headers_mut().insert(AUTHORIZATION, auth);
 
+        }
 
+
 
         let mut resp = self.client.execute(req.try_clone().unwrap()).await?;
 
         if let Some(sleep) = Self::needs_retry(&resp).await {
 
             resp = self.retry(req, sleep, MAX_ATTEMPTS).await?;