Nothing
R/redact.R
In httptest: A Test Environment for HTTP Requests
Defines functions
as.redactor
replace_in_fields
gsub_request
gsub_response
within_body_text
happly
header_apply
redact_headers
redact_cookies
chain_redactors
Documented in
as.redactor
gsub_request
gsub_response
redact_cookies
redact_headers
within_body_text
chain_redactors <- function(funs) {
# Given a list of functions, return a function that execs them in sequence
return(function(response) {
for (f in funs) {
if (inherits(f, "formula")) {
f <- as.redactor(f)
}
response <- f(response)
}
return(response)
})
}
#' @rdname redact
#' @export
redact_cookies <- function(response) {
response <- redact_headers(response, "Set-Cookie")
if (!is.null(response$cookies) && nrow(response$cookies)) {
# is.null check is for reading mocks.
# possible TODO: add $cookies to fake_response, then !is.null isn't needed
response$cookies$value <- "REDACTED"
}
return(response)
}
#' @rdname redact
#' @export
redact_headers <- function(response, headers = c()) {
header_apply(response, headers, function(x) "REDACTED")
}
header_apply <- function(response, headers, FUN, ...) {
# Apply some function over a set of named headers, anywhere they may
# appear in a response or request object
response$headers <- happly(response$headers, headers, FUN, ...)
if (!is.null(response$all_headers)) {
response$all_headers <- lapply(response$all_headers, function(h) {
h$headers <- happly(h$headers, headers, FUN, ...)
return(h)
})
}
return(response)
}
happly <- function(header_list, headers, FUN, ...) {
# Called from header_apply, actually does the applying on a header list
todo <- tolower(names(header_list)) %in% tolower(headers)
header_list[todo] <- lapply(header_list[todo], FUN, ...)
return(header_list)
}
#' @rdname redact
#' @export
within_body_text <- function(response, FUN) {
old <- suppressMessages(content(response, "text"))
new <- FUN(old)
response$content <- charToRaw(new)
return(response)
}
#' Find and replace within a 'response' or 'request'
#'
#' These functions pass their arguments to [base::gsub()] in order to find and
#' replace string patterns (regular expressions) within `request` or `response`
#' objects. `gsub_request()` replaces in the request URL and any request body
#' fields; `gsub_response()` replaces in the response URL, the response body,
#' and it calls `gsub_request()` on the `request` object found within the
#' `response`.
#'
#' Note that, unlike `gsub()`, the first argument of the function is `request`
#' or `response`,
#' not `pattern`, while the equivalent argument in `gsub()`, "`x`", is placed
#' third. This difference is to maintain consistency with the other redactor
#' functions in `httptest`, which all take `response` as the first argument.
#' @param response An 'httr' `response` object to sanitize.
#' @param pattern From [base::gsub()]: "character string containing a regular
#' expression (or character string for `fixed = TRUE`) to be matched in the
#' given character vector." Passed to `gsub()`. See the docs for `gsub()` for
#' further details.
#' @param replacement A replacement for the matched pattern, possibly including
#' regular expression backreferences. Passed to `gsub()`. See the docs for
#' `gsub()` for further details.
#' @param ... Additional logical arguments passed to `gsub()`: `ignore.case`,
#' `perl`, `fixed`, and `useBytes` are the possible options.
#' @return A `request` or `response` object, same as was passed in, with the
#' pattern replaced in the URLs and bodies.
#' @export
gsub_response <- function(response, pattern, replacement, ...) {
replacer <- function(x) gsub(pattern, replacement, x, ...)
response$url <- replacer(response$url)
response <- header_apply(response, "location", replacer)
response <- within_body_text(response, replacer)
# Modify the request too because this affects where we write the mock file to
response$request <- gsub_request(response$request, pattern, replacement, ...)
return(response)
}
#' @param request An 'httr' `request` object to sanitize.
#' @rdname gsub_response
#' @export
gsub_request <- function(request, pattern, replacement, ...) {
replacer <- function(x) gsub(pattern, replacement, x, ...)
request$url <- replacer(request$url)
# Body (as in JSON)
bod <- request_postfields(request)
if (!is.null(bod)) {
request$options[["postfields"]] <- charToRaw(replacer(bod))
}
# Multipart post fields
request$fields <- replace_in_fields(request$fields, replacer)
return(request)
}
replace_in_fields <- function(x, FUN) {
if (is.list(x)) {
x <- lapply(x, replace_in_fields, FUN)
if (!is.null(names(x))) {
names(x) <- FUN(names(x))
}
} else if (is.character(x)) {
x <- FUN(x)
}
return(x)
}
#' Wrap a redacting expression as a proper function
#'
#' Redactors take a `response` as their first argument, and some take additional
#' arguments: `redact_headers()`, for example, requires that you specify
#' `headers`. This function allows you to take a simplified expression via a
#' formula, similar to what `purrr` does, so that you can provide the function
#' to `capture_requests()`.
#'
#' For example, `as.redactor(~ redact_headers(., "X-Custom-Header"))` is equivalent
#' to `function (response) redact_headers(response, "X-Custom-Header")`. This
#' allows you to do
#' `set_redactor(~ redact_headers(., "X-Custom-Header"))`.
#' @param expr Partial expression to turn into a function of `response`
#' @return A `function`.
#' @rdname as-redactor
#' @importFrom stats terms
#' @keywords internal
#' @seealso [capture_requests()]
as.redactor <- function(fmla) {
env <- parent.frame()
expr <- attr(terms(fmla), "variables")[[2]]
# cf. magrittr:::wrap_function: wrap that in a function (.) ...
return(eval(call("function", as.pairlist(alist(. = )), expr), env, env))
}
#' Remove sensitive content from HTTP responses
#'
#' When recording requests for use as test fixtures, you don't want to include
#' secrets like authentication tokens and personal ids. These functions provide
#' a means for redacting this kind of content, or anything you want, from
#' responses that [capture_requests()] saves.
#'
#' `redact_cookies()` removes cookies from 'httr' `response` objects.
#' `redact_headers()` lets you target selected request and response headers for
#' redaction. `redact_auth()` is a convenience wrapper around
#' them for a useful default redactor in `capture_requests()`.
#'
#' `within_body_text()` lets you manipulate the text of the response body
#' and manages the parsing of the raw (binary) data in the 'response' object.
#'
#' @param response An 'httr' `response` object to sanitize.
#' @param headers For `redact_headers()`, a character vector of header names to
#' sanitize. Note that `redact_headers()` itself does not do redacting but
#' returns a function that when called does the redacting.
#' @param FUN For `within_body_text()`, a function that takes as its argument a
#' character vector and returns a modified version of that. This function will
#' be applied to the text of the response's "content".
#' @return All redacting functions return a well-formed 'httr' `response`
#' object.
#' @name redact
#' @aliases redact_auth redact_cookies redact_headers within_body_text
#' @seealso `vignette("redacting", package="httptest")` for a detailed discussion of what these functions do and how to customize them. [gsub_response()] is another redactor.
#' @export
redact_auth <- redact_cookies
Try the httptest package in your browser
Any scripts or data that you put into this service are public.
httptest documentation built on July 9, 2023, 7:45 p.m.
R Package Documentation
Browse R Packages
We want your feedback!
Note that we can't provide technical support on individual packages. You should contact the package authors for that.
Defines functions as.redactor replace_in_fields gsub_request gsub_response within_body_text happly header_apply redact_headers redact_cookies chain_redactors
Documented in as.redactor gsub_request gsub_response redact_cookies redact_headers within_body_text
chain_redactors <- function(funs) {
# Given a list of functions, return a function that execs them in sequence
return(function(response) {
for (f in funs) {
if (inherits(f, "formula")) {
f <- as.redactor(f)
}
response <- f(response)
}
return(response)
})
}
#' @rdname redact
#' @export
redact_cookies <- function(response) {
response <- redact_headers(response, "Set-Cookie")
if (!is.null(response$cookies) && nrow(response$cookies)) {
# is.null check is for reading mocks.
# possible TODO: add $cookies to fake_response, then !is.null isn't needed
response$cookies$value <- "REDACTED"
}
return(response)
}
#' @rdname redact
#' @export
redact_headers <- function(response, headers = c()) {
header_apply(response, headers, function(x) "REDACTED")
}
header_apply <- function(response, headers, FUN, ...) {
# Apply some function over a set of named headers, anywhere they may
# appear in a response or request object
response$headers <- happly(response$headers, headers, FUN, ...)
if (!is.null(response$all_headers)) {
response$all_headers <- lapply(response$all_headers, function(h) {
h$headers <- happly(h$headers, headers, FUN, ...)
return(h)
})
}
return(response)
}
happly <- function(header_list, headers, FUN, ...) {
# Called from header_apply, actually does the applying on a header list
todo <- tolower(names(header_list)) %in% tolower(headers)
header_list[todo] <- lapply(header_list[todo], FUN, ...)
return(header_list)
}
#' @rdname redact
#' @export
within_body_text <- function(response, FUN) {
old <- suppressMessages(content(response, "text"))
new <- FUN(old)
response$content <- charToRaw(new)
return(response)
}
#' Find and replace within a 'response' or 'request'
#'
#' These functions pass their arguments to [base::gsub()] in order to find and
#' replace string patterns (regular expressions) within `request` or `response`
#' objects. `gsub_request()` replaces in the request URL and any request body
#' fields; `gsub_response()` replaces in the response URL, the response body,
#' and it calls `gsub_request()` on the `request` object found within the
#' `response`.
#'
#' Note that, unlike `gsub()`, the first argument of the function is `request`
#' or `response`,
#' not `pattern`, while the equivalent argument in `gsub()`, "`x`", is placed
#' third. This difference is to maintain consistency with the other redactor
#' functions in `httptest`, which all take `response` as the first argument.
#' @param response An 'httr' `response` object to sanitize.
#' @param pattern From [base::gsub()]: "character string containing a regular
#' expression (or character string for `fixed = TRUE`) to be matched in the
#' given character vector." Passed to `gsub()`. See the docs for `gsub()` for
#' further details.
#' @param replacement A replacement for the matched pattern, possibly including
#' regular expression backreferences. Passed to `gsub()`. See the docs for
#' `gsub()` for further details.
#' @param ... Additional logical arguments passed to `gsub()`: `ignore.case`,
#' `perl`, `fixed`, and `useBytes` are the possible options.
#' @return A `request` or `response` object, same as was passed in, with the
#' pattern replaced in the URLs and bodies.
#' @export
gsub_response <- function(response, pattern, replacement, ...) {
replacer <- function(x) gsub(pattern, replacement, x, ...)
response$url <- replacer(response$url)
response <- header_apply(response, "location", replacer)
response <- within_body_text(response, replacer)
# Modify the request too because this affects where we write the mock file to
response$request <- gsub_request(response$request, pattern, replacement, ...)
return(response)
}
#' @param request An 'httr' `request` object to sanitize.
#' @rdname gsub_response
#' @export
gsub_request <- function(request, pattern, replacement, ...) {
replacer <- function(x) gsub(pattern, replacement, x, ...)
request$url <- replacer(request$url)
# Body (as in JSON)
bod <- request_postfields(request)
if (!is.null(bod)) {
request$options[["postfields"]] <- charToRaw(replacer(bod))
}
# Multipart post fields
request$fields <- replace_in_fields(request$fields, replacer)
return(request)
}
replace_in_fields <- function(x, FUN) {
if (is.list(x)) {
x <- lapply(x, replace_in_fields, FUN)
if (!is.null(names(x))) {
names(x) <- FUN(names(x))
}
} else if (is.character(x)) {
x <- FUN(x)
}
return(x)
}
#' Wrap a redacting expression as a proper function
#'
#' Redactors take a `response` as their first argument, and some take additional
#' arguments: `redact_headers()`, for example, requires that you specify
#' `headers`. This function allows you to take a simplified expression via a
#' formula, similar to what `purrr` does, so that you can provide the function
#' to `capture_requests()`.
#'
#' For example, `as.redactor(~ redact_headers(., "X-Custom-Header"))` is equivalent
#' to `function (response) redact_headers(response, "X-Custom-Header")`. This
#' allows you to do
#' `set_redactor(~ redact_headers(., "X-Custom-Header"))`.
#' @param expr Partial expression to turn into a function of `response`
#' @return A `function`.
#' @rdname as-redactor
#' @importFrom stats terms
#' @keywords internal
#' @seealso [capture_requests()]
as.redactor <- function(fmla) {
env <- parent.frame()
expr <- attr(terms(fmla), "variables")[[2]]
# cf. magrittr:::wrap_function: wrap that in a function (.) ...
return(eval(call("function", as.pairlist(alist(. = )), expr), env, env))
}
#' Remove sensitive content from HTTP responses
#'
#' When recording requests for use as test fixtures, you don't want to include
#' secrets like authentication tokens and personal ids. These functions provide
#' a means for redacting this kind of content, or anything you want, from
#' responses that [capture_requests()] saves.
#'
#' `redact_cookies()` removes cookies from 'httr' `response` objects.
#' `redact_headers()` lets you target selected request and response headers for
#' redaction. `redact_auth()` is a convenience wrapper around
#' them for a useful default redactor in `capture_requests()`.
#'
#' `within_body_text()` lets you manipulate the text of the response body
#' and manages the parsing of the raw (binary) data in the 'response' object.
#'
#' @param response An 'httr' `response` object to sanitize.
#' @param headers For `redact_headers()`, a character vector of header names to
#' sanitize. Note that `redact_headers()` itself does not do redacting but
#' returns a function that when called does the redacting.
#' @param FUN For `within_body_text()`, a function that takes as its argument a
#' character vector and returns a modified version of that. This function will
#' be applied to the text of the response's "content".
#' @return All redacting functions return a well-formed 'httr' `response`
#' object.
#' @name redact
#' @aliases redact_auth redact_cookies redact_headers within_body_text
#' @seealso `vignette("redacting", package="httptest")` for a detailed discussion of what these functions do and how to customize them. [gsub_response()] is another redactor.
#' @export
redact_auth <- redact_cookies
Try the httptest package in your browser
Any scripts or data that you put into this service are public.
R Package Documentation
Browse R Packages
We want your feedback!
Note that we can't provide technical support on individual packages. You should contact the package authors for that.
Embedding an R snippet on your website
Add the following code to your website.
For more information on customizing the embed code, read Embedding Snippets.