From c23755ad6becc50a49420f8d7ff3e246bd84eda5 Mon Sep 17 00:00:00 2001
From: Matthew Barnett <matt@sixtyodd.com>
Date: Tue, 4 Sep 2018 20:12:11 -0600
Subject: [PATCH] Add filtering for sensitive information in errors reported to
 Rollbar (#167)

---
 lib/pushmi_pullyu/cli.rb | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/lib/pushmi_pullyu/cli.rb b/lib/pushmi_pullyu/cli.rb
index 8a4da99..48c9c9e 100644
--- a/lib/pushmi_pullyu/cli.rb
+++ b/lib/pushmi_pullyu/cli.rb
@@ -60,6 +60,18 @@ def configure_rollbar
     Rollbar.configure do |config|
       config.enabled = false unless options[:rollbar][:token].present?
       config.access_token = options[:rollbar][:token]
+
+      # add a filter after Rollbar has built the error payload but before it is delivered to the API,
+      # in order to strip sensitive information out of certain error messages
+      exception_message_transformer = proc do |payload|
+        clean_message = payload[:exception].message.sub(/http:\/\/.+:.+@(.+)\/fedora\/rest\/prod\/(.*)/,
+                                                        "http://\1/fedora/rest/prod/\2")
+        payload[:exception] = payload[:exception].exception(clean_message)
+        payload[:message] = clean_message
+      end
+
+      config.transform << exception_message_transformer
+
       if options[:rollbar][:proxy_host].present?
         config.proxy = {}
         config.proxy[:host] = options[:rollbar][:proxy_host]