Skip to content

Commit

Permalink
update AWS payload extraction rules (#4859)
Browse files Browse the repository at this point in the history
  • Loading branch information
@tlhunter
tlhunter authored Nov 6, 2024
1 parent 8112f6c commit ff9b02b
Show file tree
Hide file tree
Showing 5 changed files with 75 additions and 3 deletions.
1 change: 1 addition & 0 deletions packages/datadog-plugin-aws-sdk/src/services/eventbridge.js
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,6 +4,7 @@ const BaseAwsSdkPlugin = require('../base')

class EventBridge extends BaseAwsSdkPlugin {
static get id () { return 'eventbridge' }
static get isPayloadReporter () { return true }

generateTags (params, operation, response) {
if (!params || !params.source) return {}
Expand Down
1 change: 1 addition & 0 deletions packages/datadog-plugin-aws-sdk/src/services/kinesis.js
View file
Original file line number Diff line number Diff line change
Expand Up @@ -10,6 +10,7 @@ const { storage } = require('../../../datadog-core')
class Kinesis extends BaseAwsSdkPlugin {
static get id () { return 'kinesis' }
static get peerServicePrecursors () { return ['streamname'] }
static get isPayloadReporter () { return true }

constructor (...args) {
super(...args)
Expand Down
1 change: 1 addition & 0 deletions packages/datadog-plugin-aws-sdk/src/services/s3.js
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,7 @@ const BaseAwsSdkPlugin = require('../base')
class S3 extends BaseAwsSdkPlugin {
static get id () { return 's3' }
static get peerServicePrecursors () { return ['bucketname'] }
static get isPayloadReporter () { return true }

generateTags (params, operation, response) {
const tags = {}
Expand Down
1 change: 1 addition & 0 deletions packages/datadog-plugin-aws-sdk/src/services/sqs.js
View file
Original file line number Diff line number Diff line change
Expand Up @@ -9,6 +9,7 @@ const { DsmPathwayCodec } = require('../../../dd-trace/src/datastreams/pathway')
class Sqs extends BaseAwsSdkPlugin {
static get id () { return 'sqs' }
static get peerServicePrecursors () { return ['queuename'] }
static get isPayloadReporter () { return true }

constructor (...args) {
super(...args)
Expand Down
74 changes: 71 additions & 3 deletions packages/dd-trace/src/payload-tagging/config/aws.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -17,14 +17,82 @@
"$.Attributes.Token",
"$.Endpoints.*.Token",
"$.PhoneNumber",
"$.PhoneNumbers",
"$.phoneNumbers",
"$.PlatformApplication.*.PlatformCredential",
"$.PlatformApplication.*.PlatformPrincipal",
"$.Subscriptions.*.Endpoint"
"$.Subscriptions.*.Endpoint",
"$.PhoneNumbers[*].PhoneNumber",
"$.phoneNumbers[*]"
],
"expand": [
"$.MessageAttributes.*.StringValue"
]
},
"eventbridge": {
"request": [
"$.AuthParameters.OAuthParameters.OAuthHttpParameters.HeaderParameters[*].Value",
"$.AuthParameters.OAuthParameters.OAuthHttpParameters.QueryStringParameters[*].Value",
"$.AuthParameters.OAuthParameters.OAuthHttpParameters.BodyParameters[*].Value",
"$.AuthParameters.InvocationHttpParameters.HeaderParameters[*].Value",
"$.AuthParameters.InvocationHttpParameters.QueryStringParameters[*].Value",
"$.AuthParameters.InvocationHttpParameters.BodyParameters[*].Value",
"$.Targets[*].RedshiftDataParameters.Sql",
"$.Targets[*].RedshiftDataParameters.Sqls",
"$.Targets[*].AppSyncParameters.GraphQLOperation",
"$.AuthParameters.BasicAuthParameters.Password",
"$.AuthParameters.OAuthParameters.ClientParameters.ClientSecret",
"$.AuthParameters.ApiKeyAuthParameters.ApiKeyValue"
],
"response": [
"$.AuthParameters.OAuthParameters.OAuthHttpParameters.HeaderParameters[*].Value",
"$.AuthParameters.OAuthParameters.OAuthHttpParameters.QueryStringParameters[*].Value",
"$.AuthParameters.OAuthParameters.OAuthHttpParameters.BodyParameters[*].Value",
"$.AuthParameters.InvocationHttpParameters.HeaderParameters[*].Value",
"$.AuthParameters.InvocationHttpParameters.QueryStringParameters[*].Value",
"$.AuthParameters.InvocationHttpParameters.BodyParameters[*].Value",
"$.Targets[*].RedshiftDataParameters.Sql",
"$.Targets[*].RedshiftDataParameters.Sqls",
"$.Targets[*].AppSyncParameters.GraphQLOperation"
],
"expand": [
]
},
"s3": {
"request": [
"$.SSEKMSKeyId",
"$.SSEKMSEncryptionContext",
"$.ServerSideEncryptionConfiguration.Rules[*].ApplyServerSideEncryptionByDefault.KMSMasterKeyID",
"$.InventoryConfiguration.Destination.S3BucketDestination.Encryption.SSEKMS.KeyId",
"$.SSECustomerKey",
"$.CopySourceSSECustomerKey",
"$.RestoreRequest.OutputLocation.S3.Encryption.KMSKeyId"

],
"response": [
"$.SSEKMSKeyId",
"$.SSEKMSEncryptionContext",
"$.ServerSideEncryptionConfiguration.Rules[*].ApplyServerSideEncryptionByDefault.KMSMasterKeyID",
"$.InventoryConfiguration.Destination.S3BucketDestination.Encryption.SSEKMS.KeyId",
"$.Credentials.SecretAccessKey",
"$.Credentials.SessionToken",
"$.InventoryConfigurationList[*].Destination.S3BucketDestination.Encryption.SSEKMS.KeyId"
],
"expand": [
]
},
"sqs": {
"request": [
],
"response": [
],
"expand": [
]
},
"kinesis": {
"request": [
],
"response": [
],
"expand": [
]
}
}

0 comments on commit ff9b02b

Please sign in to comment.