Merge pull request #611 from JNU-econovation/feat/#605

[BE/FEAT] 운영 로그 masking 처리하기

Author: hwangdaesun

src/main/java/com/gaebaljip/exceed/common/log/MaskingPatternLayout.java

@@ -0,0 +1,48 @@
+package com.gaebaljip.exceed.common.log;
+
+import java.util.ArrayList;
+import java.util.List;
+import java.util.regex.Matcher;
+import java.util.regex.Pattern;
+import java.util.stream.Collectors;
+import java.util.stream.IntStream;
+
+import ch.qos.logback.classic.PatternLayout;
+import ch.qos.logback.classic.spi.ILoggingEvent;
+
+public class MaskingPatternLayout extends PatternLayout {
+
+    private Pattern multilinePattern;
+    private List<String> maskPatterns = new ArrayList<>();
+
+    public void addMaskPattern(String maskPattern) {
+        maskPatterns.add(maskPattern);
+        multilinePattern =
+                Pattern.compile(
+                        maskPatterns.stream().collect(Collectors.joining("|")), Pattern.MULTILINE);
+    }
+
+    @Override
+    public String doLayout(ILoggingEvent event) {
+        return maskMessage(super.doLayout(event));
+    }
+
+    private String maskMessage(String message) {
+        if (multilinePattern == null) {
+            return message;
+        }
+        StringBuilder sb = new StringBuilder(message);
+        Matcher matcher = multilinePattern.matcher(sb);
+        while (matcher.find()) {
+            IntStream.rangeClosed(1, matcher.groupCount())
+                    .forEach(
+                            group -> {
+                                if (matcher.group(group) != null) {
+                                    IntStream.range(matcher.start(group), matcher.end(group))
+                                            .forEach(i -> sb.setCharAt(i, '*'));
+                                }
+                            });
+        }
+        return sb.toString();
+    }
+}

src/main/resources/application-local.yml

@@ -18,7 +18,6 @@ spring:
       hibernate:
         show_sql : true
         format_sql: true
-        use_sql_comments: true
 
 
 cloud:

src/main/resources/application-prod.yml

@@ -14,11 +14,7 @@ spring:
         physical-strategy: org.hibernate.boot.model.naming.PhysicalNamingStrategyStandardImpl
       dialect: org.hibernate.dialect.MariaDBDialect
       ddl-auto: validate
-    properties:
-      hibernate:
-        show_sql: true
-        format_sql: true
-        use_sql_comments: true
+
 cloud:
   aws:
     credentials:
@@ -84,14 +80,6 @@ server:
     mbeanregistry:
       enabled: true
 
-logging:
-  level:
-    org:
-      hibernate:
-        type:
-          descriptor:
-            sql: info
-
 org:
   quartz:
     scheduler:

src/main/resources/logback-spring.xml

@@ -2,25 +2,48 @@
 <configuration>
     <conversionRule conversionWord="clr" converterClass="org.springframework.boot.logging.logback.ColorConverter" />
 
-    <property name="CONSOLE_LOG_PATTERN" value="%d{yyyy-MM-dd HH:mm:ss.SSS} [%X{REQUEST_ID}] [%thread] %clr(%5level) %cyan(%logger) - %msg%n" />
-    <property name="FILE_LOG_PATTERN" value="%d{yyyy-MM-dd HH:mm:ss.SSS} [%thread] %5level %logger - %msg%n" />
+    <property name="CONSOLE_LOG_PATTERN" value="%d{yyyy-MM-dd HH:mm:ss.SSS} %clr([%X{REQUEST_ID}]){magenta} [%thread] %clr(%5level) %clr(%20logger){cyan} - %msg%n" />
+    <property name="FILE_LOG_PATTERN" value="%d{yyyy-MM-dd HH:mm:ss.SSS} [%X{REQUEST_ID}] [%thread] %5level %20logger - %msg%n" />
 
     <appender name="CONSOLE" class="ch.qos.logback.core.ConsoleAppender">
-        <encoder>
-            <pattern>${CONSOLE_LOG_PATTERN}</pattern>
+        <encoder class="ch.qos.logback.core.encoder.LayoutWrappingEncoder">
+            <layout class="com.gaebaljip.exceed.common.log.MaskingPatternLayout">
+                <maskPattern>\"(?i).*email.*"\s*:\s*\"(.*?)\"</maskPattern>
+                <maskPattern>\"(?i).*password.*"\s*:\s*\"(.*?)\"</maskPattern>
+                <maskPattern>\"(?i).*height.*"\s*:\s*(\d+)</maskPattern>
+                <maskPattern>\"(?i).*weight.*"\s*:\s*(\d+)</maskPattern>
+                <maskPattern>\"(?i).*targetWeight.*"\s*:\s*(\d+)</maskPattern>
+                <maskPattern>\"(?i).*age.*"\s*:\s*(\d+)</maskPattern>
+                <maskPattern>\"(?i).*etc.*"\s*:\s*\"(.*?)\"</maskPattern>
+                <maskPattern>\"(?i).*activity.*"\s*:\s*\"(.*?)\"</maskPattern>
+                <pattern>${CONSOLE_LOG_PATTERN}</pattern>
+            </layout>
         </encoder>
     </appender>
+
     <appender name="FILE" class="ch.qos.logback.core.rolling.RollingFileAppender">
-        <encoder>
-            <pattern>${FILE_LOG_PATTERN}</pattern>
+        <encoder class="ch.qos.logback.core.encoder.LayoutWrappingEncoder">
+            <layout class="com.gaebaljip.exceed.common.log.MaskingPatternLayout">
+                <maskPattern>\"(?i).*email.*"\s*:\s*\"(.*?)\"</maskPattern>
+                <maskPattern>\"(?i).*password.*"\s*:\s*\"(.*?)\"</maskPattern>
+                <maskPattern>\"(?i).*height.*"\s*:\s*(\d+)</maskPattern>
+                <maskPattern>\"(?i).*weight.*"\s*:\s*(\d+)</maskPattern>
+                <maskPattern>\"(?i).*targetWeight.*"\s*:\s*(\d+)</maskPattern>
+                <maskPattern>\"(?i).*age.*"\s*:\s*(\d+)</maskPattern>
+                <maskPattern>\"(?i).*etc.*"\s*:\s*\"(.*?)\"</maskPattern>
+                <maskPattern>\"(?i).*activity.*"\s*:\s*\"(.*?)\"</maskPattern>
+                <pattern>${FILE_LOG_PATTERN}</pattern>
+            </layout>
         </encoder>
         <rollingPolicy class="ch.qos.logback.core.rolling.SizeAndTimeBasedRollingPolicy">
             <fileNamePattern>./log/%d{yyyy-MM-dd}.%i.log</fileNamePattern>
-            <maxFileSize>100MB</maxFileSize>
+            <maxFileSize>10MB</maxFileSize>
             <maxHistory>30</maxHistory>
+            <totalSizeCap>100MB</totalSizeCap>
         </rollingPolicy>
     </appender>
 
+
     <springProfile name="local">
         <logger name="com.gaebaljip.exceed" level="DEBUG" />
         <root level="INFO">
@@ -39,4 +62,4 @@
             <appender-ref ref="FILE" />
         </root>
     </springProfile>
-</configuration>
+</configuration>

src/test/java/com/gaebaljip/exceed/common/SchemaValidationTest.java

@@ -1,36 +1,37 @@
-//package com.gaebaljip.exceed.common;
-//
-//import java.io.IOException;
-//import java.nio.file.Files;
-//import java.nio.file.Paths;
-//import java.sql.Connection;
-//import java.sql.SQLException;
-//import java.sql.Statement;
-//
-//import org.junit.jupiter.api.AfterAll;
-//import org.junit.jupiter.api.BeforeAll;
-//import org.junit.jupiter.api.Test;
-//import org.springframework.boot.test.autoconfigure.jdbc.AutoConfigureTestDatabase;
-//import org.springframework.boot.test.autoconfigure.orm.jpa.DataJpaTest;
-//import org.springframework.context.annotation.Import;
-//import org.springframework.test.context.DynamicPropertyRegistry;
-//import org.springframework.test.context.DynamicPropertySource;
-//import org.testcontainers.containers.GenericContainer;
-//import org.testcontainers.containers.MariaDBContainer;
-//import org.testcontainers.utility.DockerImageName;
-//
-//import com.gaebaljip.exceed.config.QueryDslConfig;
-//
-//@DataJpaTest(properties = "spring.jpa.hibernate.ddl-auto=validate")
-//@AutoConfigureTestDatabase(replace = AutoConfigureTestDatabase.Replace.NONE)
-//@Import(QueryDslConfig.class)
-//public class SchemaValidationTest {
+// package com.gaebaljip.exceed.common;
+//
+// import java.io.IOException;
+// import java.nio.file.Files;
+// import java.nio.file.Paths;
+// import java.sql.Connection;
+// import java.sql.SQLException;
+// import java.sql.Statement;
+//
+// import org.junit.jupiter.api.AfterAll;
+// import org.junit.jupiter.api.BeforeAll;
+// import org.junit.jupiter.api.Test;
+// import org.springframework.boot.test.autoconfigure.jdbc.AutoConfigureTestDatabase;
+// import org.springframework.boot.test.autoconfigure.orm.jpa.DataJpaTest;
+// import org.springframework.context.annotation.Import;
+// import org.springframework.test.context.DynamicPropertyRegistry;
+// import org.springframework.test.context.DynamicPropertySource;
+// import org.testcontainers.containers.GenericContainer;
+// import org.testcontainers.containers.MariaDBContainer;
+// import org.testcontainers.utility.DockerImageName;
+//
+// import com.gaebaljip.exceed.config.QueryDslConfig;
+//
+// @DataJpaTest(properties = "spring.jpa.hibernate.ddl-auto=validate")
+// @AutoConfigureTestDatabase(replace = AutoConfigureTestDatabase.Replace.NONE)
+// @Import(QueryDslConfig.class)
+// public class SchemaValidationTest {
 //
 //    private static MariaDBContainer<?> schemaValidationMariaDB;
 //    private static GenericContainer<?> redisContainer;
 //
 //    private static String getAbsolutePath() {
-//        String relativePath = "resources/gaebaljip-develop-environment/mariadb-init/01_schema.sql";
+//        String relativePath =
+// "resources/gaebaljip-develop-environment/mariadb-init/01_schema.sql";
 //        String currentDir = System.getProperty("user.dir");
 //        return Paths.get(currentDir, relativePath).normalize().toAbsolutePath().toString();
 //    }
@@ -92,4 +93,4 @@
 //
 //    @Test
 //    public void testSchemaValidity() {}
-//}
+// }