Remove sensitive info from headers

agprasha · Sep 9, 2015 · 89a88cf · 89a88cf
1 parent c20f7cf
commit 89a88cf
Showing 1 changed file with 6 additions and 0 deletions.
diff --git a/src/DataCollector/SymfonyRequestCollector.php b/src/DataCollector/SymfonyRequestCollector.php
@@ -109,6 +109,12 @@ public function collect()
             $data['session_attributes'] = $sessionAttributes;
         }
 
+        foreach ($data['request_server'] as $key => $value) {
+            if (str_is('*_KEY', $key) || str_is('*_PASSWORD', $key) || str_is('*_SECRET', $key)) {
+                $data['request_server'][$key] = '******';
+            }
+        }
+
         if (isset($data['request_headers']['php-auth-pw'])) {
             $data['request_headers']['php-auth-pw'] = '******';
         }