Skip to content

Dlp #1909

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
russelmrcl wants to merge 45 commits into from
Closed

Dlp #1909

Show file tree
Hide file tree
Changes from 14 commits
Commits
Show all changes
45 commits
Select commit Hold shift + click to select a range
bcc7dcb
add dlp
russelmrcl Jun 23, 2025
497a43c
add comments
russelmrcl Jun 23, 2025
f0119d3
wip
russelmrcl Jun 23, 2025
5f84eb6
refactor code
russelmrcl Jun 23, 2025
e2536fe
wip
russelmrcl Jun 23, 2025
6ebb9c4
wip
russelmrcl Jun 23, 2025
9d2e722
wip
russelmrcl Jun 23, 2025
699b226
docs: minor
predic8 Jun 23, 2025
7ffee70
wip
russelmrcl Jun 23, 2025
559a62b
wip
russelmrcl Jun 23, 2025
de3ed95
wip
russelmrcl Jun 23, 2025
4c3ff8f
wip: dlp
russelmrcl Jun 26, 2025
8cfb161
wip: dlp
russelmrcl Jun 26, 2025
b17b14a
wip: dlp
russelmrcl Jun 26, 2025
099ec70
add test
russelmrcl Jun 26, 2025
02d75ec
wip
russelmrcl Jun 30, 2025
2be464b
add strategy pattern
russelmrcl Jun 30, 2025
450204b
wip test
russelmrcl Jun 30, 2025
75b56d9
wip
russelmrcl Jun 30, 2025
8adedb9
wip
russelmrcl Jun 30, 2025
e7cc895
refactor code
russelmrcl Jun 30, 2025
0f673bc
add tests
russelmrcl Jun 30, 2025
6a0bed1
wip
russelmrcl Jun 30, 2025
469256e
resolve conversations
russelmrcl Jun 30, 2025
53bc2f8
convert to json parse
russelmrcl Jun 30, 2025
7d04071
Merge branch 'master' into dlp
christiangoerdes Jun 30, 2025
ff15443
add path
russelmrcl Jun 30, 2025
ea1e179
wip
russelmrcl Jun 30, 2025
dce7806
add mask
russelmrcl Jun 30, 2025
e2eaa48
wip
russelmrcl Jul 7, 2025
13711b1
wip
russelmrcl Jul 17, 2025
7aa7e95
wip
russelmrcl Jul 17, 2025
60a13df
fix
russelmrcl Jul 17, 2025
0bf1268
refactor
russelmrcl Jul 17, 2025
21c3489
wip
russelmrcl Jul 17, 2025
20ed318
refactor code
russelmrcl Jul 21, 2025
c20c70d
improve log
russelmrcl Jul 21, 2025
528cc14
add docs
russelmrcl Jul 21, 2025
8d75f7c
edit docs
russelmrcl Jul 21, 2025
c3ec071
wip
russelmrcl Aug 1, 2025
e9a6286
refactor code
russelmrcl Aug 1, 2025
8b1a278
refactor code
russelmrcl Aug 1, 2025
77022dd
refactor code
russelmrcl Aug 26, 2025
5008ee7
Merge branch 'master' into dlp
russelmrcl Sep 11, 2025
e58e11d
Merge branch 'master' into dlp
christiangoerdes Nov 18, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
50 changes: 50 additions & 0 deletions core/src/main/java/com/predic8/membrane/core/interceptor/dlp/CsvFieldConfiguration.java
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,50 @@
package com.predic8.membrane.core.interceptor.dlp;

import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

import java.io.BufferedReader;
import java.io.IOException;
import java.io.InputStream;
import java.io.InputStreamReader;
import java.util.HashMap;
import java.util.Map;

public class CsvFieldConfiguration implements FieldConfiguration {

private static final Logger log = LoggerFactory.getLogger(CsvFieldConfiguration.class);

@Override
public Map<String, String> getFields(String fileName) {
try (InputStream inputStream = CsvFieldConfiguration.class.getClassLoader().getResourceAsStream(fileName)) {
Map<String, String> riskDict = new HashMap<>();
if (inputStream == null) {
log.error("Could not find file: {}", fileName);
throw new NullPointerException("InputStream is null. File not found: " + fileName);
}

BufferedReader reader = new BufferedReader(new InputStreamReader(inputStream));
String line;
boolean isHeader = true;

while ((line = reader.readLine()) != null) {
if (isHeader) {
isHeader = false;
continue;
}

String[] parts = line.split(",", -1);
if (parts.length >= 3) {
String field = parts[0].trim().toLowerCase();
String riskLevel = parts[2].trim();
riskDict.put(field, riskLevel);
} else {
log.warn("Invalid CSV line: {}", line);
}
}
return riskDict;
} catch (IOException e) {
throw new RuntimeException("Failed to load risk data from " + fileName, e);
}
}
}
87 changes: 87 additions & 0 deletions core/src/main/java/com/predic8/membrane/core/interceptor/dlp/DLPAnalyzer.java
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,87 @@
package com.predic8.membrane.core.interceptor.dlp;

import com.fasterxml.jackson.core.JsonFactory;
import com.fasterxml.jackson.core.JsonFactoryBuilder;
import com.fasterxml.jackson.core.JsonParser;
import com.fasterxml.jackson.core.StreamReadConstraints;
import com.fasterxml.jackson.core.json.JsonReadFeature;
import com.predic8.membrane.core.http.Message;

import java.io.BufferedReader;
import java.io.InputStreamReader;
import java.nio.charset.Charset;
import java.nio.charset.StandardCharsets;
import java.util.*;

public class DLPAnalyzer {

private static final int MAX_DEPTH = 64;
private static final int MAX_STRING_LENGTH = 16 * 1024; // 16 KiB

private static final JsonFactory JSON_FACTORY = new JsonFactoryBuilder()
.configure(JsonReadFeature.ALLOW_TRAILING_COMMA, true)
.configure(JsonReadFeature.ALLOW_UNESCAPED_CONTROL_CHARS, false)
.streamReadConstraints(StreamReadConstraints.builder()
.maxNestingDepth(MAX_DEPTH)
.maxStringLength(MAX_STRING_LENGTH)
.build())
.build();

private final Map<String, String> riskDict;

public DLPAnalyzer(Map<String, String> riskDict) {
this.riskDict = Map.copyOf(riskDict); // immutable defensive copy
}

public RiskReport analyze(Message msg) {
try (BufferedReader reader = new BufferedReader(new InputStreamReader(msg.getBodyAsStreamDecoded(), Optional.ofNullable(msg.getCharset())
.map(Charset::forName)
.orElse(StandardCharsets.UTF_8)));
JsonParser parser = JSON_FACTORY.createParser(reader)) {

Deque<String> ctx = new ArrayDeque<>();
RiskReport report = new RiskReport();
String currentField = null;

while (parser.nextToken() != null) {
switch (parser.currentToken()) {
case FIELD_NAME -> currentField = parser.currentName();
case START_OBJECT, START_ARRAY -> {
if (currentField != null) {
ctx.addLast(currentField);
currentField = null;
}
}
case END_OBJECT, END_ARRAY -> {
if (!ctx.isEmpty()) ctx.removeLast();
}
default -> {
if (currentField != null) {
String fullPath = buildFullPath(ctx, currentField);
String lvl = classify(fullPath, currentField);
report.recordField(fullPath, lvl);
currentField = null;
}
}
}
}
return report;
} catch (Exception e) {
throw new RuntimeException(e);
}
}

private String classify(String fullPath, String simpleName) {
return Optional.ofNullable(riskDict.get(fullPath.toLowerCase()))
.or(() -> Optional.ofNullable(riskDict.get(simpleName.toLowerCase())))
.orElse("unclassified")
.toLowerCase();
}

private static String buildFullPath(Deque<String> stack, String field) {
if (stack.isEmpty()) return field;
List<String> path = new ArrayList<>(stack);
path.add(field);
return String.join(".", path);
}
}
90 changes: 90 additions & 0 deletions core/src/main/java/com/predic8/membrane/core/interceptor/dlp/DLPInterceptor.java
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,90 @@
package com.predic8.membrane.core.interceptor.dlp;

import com.predic8.membrane.annot.MCAttribute;
import com.predic8.membrane.annot.MCChildElement;
import com.predic8.membrane.annot.MCElement;
import com.predic8.membrane.core.exchange.Exchange;
import com.predic8.membrane.core.http.Message;
import com.predic8.membrane.core.interceptor.AbstractInterceptor;
import com.predic8.membrane.core.interceptor.Outcome;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

import static com.predic8.membrane.core.interceptor.Outcome.CONTINUE;

@MCElement(name = "dlp")
public class DLPInterceptor extends AbstractInterceptor {

private static final Logger log = LoggerFactory.getLogger(DLPInterceptor.class);
private DLPAnalyzer dlpAnalyzer;
private String fieldsConfig;
private String action = "report";
private Fields fields;

@Override
public void init() {
super.init();
dlpAnalyzer = new DLPAnalyzer(new CsvFieldConfiguration().getFields(fieldsConfig));
}

@Override
public Outcome handleRequest(Exchange exc) {
return handleInternal(exc.getRequest());
}

@Override
public Outcome handleResponse(Exchange exc) {
return handleInternal(exc.getResponse());
}

public Outcome handleInternal(Message msg) {
if (dlpAnalyzer == null) {
log.warn("DLP not initialized.");
return CONTINUE;
}

RiskReport report = dlpAnalyzer.analyze(msg);
log.info("DLP Risk Analysis: {}", report.getLogReport());

if (fields != null && !fields.getFields().isEmpty()) {
for (Field f : fields.getFields()) {
f.handleAction(msg);
}
} else {
report.getMatchedFields().keySet().forEach(name -> {
Field f = new Field();
f.setName(name);
f.setAction(action);
f.handleAction(msg);
});
}
return CONTINUE;
}

public String getFieldsConfig() {
return fieldsConfig;
}

@MCAttribute
public void setFieldsConfig(String fieldsConfig) {
this.fieldsConfig = fieldsConfig;
}

public String getAction() {
return action;
}

@MCAttribute
public void setAction(String action) {
this.action = action;
}
Copy link
Contributor

@coderabbitai coderabbitai bot Jun 26, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🛠️ Refactor suggestion

🧩 Verification correct

Add validation for the action parameter.

The setter should validate that the action is one of the supported values.

Apply this diff to add validation:

 @MCAttribute
 public void setAction(String action) {
+    if (action != null && !action.matches("(?i)filter|mask|report")) {
+        throw new IllegalArgumentException("Invalid action: " + action + ". Must be one of: filter, mask, report");
+    }
     this.action = action;
 }

Run the following script to verify the valid actions in the Field class:

🏁 Script executed:

#!/bin/bash
# Description: Verify the valid actions supported by the Field class

# Search for action handling in Field class
ast-grep --pattern 'class Field {
  $$$
}'

# Search for action-related constants or enums
rg -A 5 "action.*=.*\"(filter|mask|report)\""

Length of output: 703

Add validation for the action parameter.

The setter should validate that the action is one of the supported values.

Apply this diff to add validation:

 @MCAttribute
 public void setAction(String action) {
+    if (action != null && !action.matches("(?i)filter|mask|report")) {
+        throw new IllegalArgumentException("Invalid action: " + action + ". Must be one of: filter, mask, report");
+    }
     this.action = action;
 }

Run the following script to verify the valid actions in the Field class:

#!/bin/bash
# Description: Verify the valid actions supported by the Field class

# Search for action handling in Field class
ast-grep --pattern 'class Field {
  $$$
}'

# Search for action-related constants or enums
rg -A 5 "action.*=.*\"(filter|mask|report)\""
🤖 Prompt for AI Agents 
In
core/src/main/java/com/predic8/membrane/core/interceptor/dlp/DLPInterceptor.java
around lines 77 to 80, the setAction method lacks validation for the action
parameter. Modify the setter to check if the provided action string matches one
of the supported values (e.g., "filter", "mask", "report") before assigning it.
If the action is invalid, throw an IllegalArgumentException or handle the error
appropriately to prevent unsupported actions from being set.


public Fields getFields() {
return fields;
}

@MCChildElement
public void setFields(Fields fields) {
this.fields = fields;
}
}
65 changes: 65 additions & 0 deletions core/src/main/java/com/predic8/membrane/core/interceptor/dlp/Field.java
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,65 @@
package com.predic8.membrane.core.interceptor.dlp;

import com.fasterxml.jackson.databind.JsonNode;
import com.fasterxml.jackson.databind.ObjectMapper;
import com.predic8.membrane.annot.MCAttribute;
import com.predic8.membrane.annot.MCElement;
import com.predic8.membrane.core.http.Message;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

import java.util.Locale;
import java.util.Objects;
import java.util.regex.Pattern;

@MCElement(name = "field")
public class Field {


private static final Logger log = LoggerFactory.getLogger(Field.class);
private static final ObjectMapper MAPPER = new ObjectMapper();

private String name;
private Action action = Action.REPORT;
private Pattern compiled = Pattern.compile(".*");

@MCAttribute
public void setName(String name) {
this.name = Objects.requireNonNull(name, "field name must not be null");
this.compiled = Pattern.compile(name, Pattern.CASE_INSENSITIVE);
}

@MCAttribute
public void setAction(String action) {
this.action = Action.valueOf(action.toUpperCase(Locale.ROOT));
}

public String getName() {
return name;
}

public String getAction() {
return action.name().toLowerCase(Locale.ROOT);
}

public void handleAction(Message msg) {
try {
JsonNode root = MAPPER.readTree(msg.getBodyAsStringDecoded());

switch (action) {
case FILTER -> JsonUtils.filter(root, compiled);
case MASK -> JsonUtils.mask(root, compiled);
case REPORT -> {/* no?op */}
}

byte[] out = MAPPER.writeValueAsBytes(root);
msg.setBodyContent(out);
msg.getHeader().setContentLength(out.length);
msg.getHeader().setContentType("application/json; charset=UTF-8");
Copy link
Contributor

@coderabbitai coderabbitai bot Jun 26, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🛠️ Refactor suggestion

Optimize REPORT action to avoid unnecessary body modification.

The current implementation updates the message body and headers even for the REPORT action, which is a no-op. This creates unnecessary overhead and could potentially alter message characteristics when only reporting is intended.

            switch (action) {
                case FILTER -> JsonUtils.filter(root, compiled);
                case MASK -> JsonUtils.mask(root, compiled);
                case REPORT -> {/* no-op */}
            }

-            byte[] out = MAPPER.writeValueAsBytes(root);
-            msg.setBodyContent(out);
-            msg.getHeader().setContentLength(out.length);
-            msg.getHeader().setContentType("application/json; charset=UTF-8");
+            if (action != Action.REPORT) {
+                byte[] out = MAPPER.writeValueAsBytes(root);
+                msg.setBodyContent(out);
+                msg.getHeader().setContentLength(out.length);
+                msg.getHeader().setContentType("application/json; charset=UTF-8");
+            }
📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change
switch (action) {
case FILTER -> JsonUtils.filter(root, compiled);
case MASK -> JsonUtils.mask(root, compiled);
case REPORT -> {/* no?op */}
}
byte[] out = MAPPER.writeValueAsBytes(root);
msg.setBodyContent(out);
msg.getHeader().setContentLength(out.length);
msg.getHeader().setContentType("application/json; charset=UTF-8");
switch (action) {
case FILTER -> JsonUtils.filter(root, compiled);
case MASK -> JsonUtils.mask(root, compiled);
case REPORT -> { /* no-op */ }
}
if (action != Action.REPORT) {
byte[] out = MAPPER.writeValueAsBytes(root);
msg.setBodyContent(out);
msg.getHeader().setContentLength(out.length);
msg.getHeader().setContentType("application/json; charset=UTF-8");
}
🤖 Prompt for AI Agents 
In core/src/main/java/com/predic8/membrane/core/interceptor/dlp/Field.java
around lines 49 to 58, the code updates the message body and headers even when
the action is REPORT, which does nothing and causes unnecessary processing.
Modify the code to skip updating the message body and headers when the action is
REPORT, so that no changes or overhead occur for this no-op case.

} catch (Exception e) {
log.error("DLP field action '{}' failed: {}", name, e.toString(), e);
}
}

private enum Action {MASK, FILTER, REPORT}
}
7 changes: 7 additions & 0 deletions core/src/main/java/com/predic8/membrane/core/interceptor/dlp/FieldConfiguration.java
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,7 @@
package com.predic8.membrane.core.interceptor.dlp;

import java.util.Map;

public interface FieldConfiguration {
Map<String, String> getFields(String fileName);
}
23 changes: 23 additions & 0 deletions core/src/main/java/com/predic8/membrane/core/interceptor/dlp/Fields.java
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,23 @@
package com.predic8.membrane.core.interceptor.dlp;

import com.predic8.membrane.annot.MCChildElement;
import com.predic8.membrane.annot.MCElement;

import java.util.ArrayList;
import java.util.List;

@MCElement(name = "fields")
public class Fields {

private List<Field> fields = new ArrayList<>();

@MCChildElement
public Fields setFields(List<Field> fields) {
this.fields = fields;
return this;
}

public List<Field> getFields() {
return fields;
}
}
43 changes: 43 additions & 0 deletions core/src/main/java/com/predic8/membrane/core/interceptor/dlp/JsonUtils.java
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,43 @@
package com.predic8.membrane.core.interceptor.dlp;

import com.fasterxml.jackson.databind.JsonNode;
import com.fasterxml.jackson.databind.node.ObjectNode;

import java.util.Iterator;
import java.util.Map;
import java.util.regex.Pattern;

class JsonUtils {

static void filter(JsonNode node, Pattern p) {
traverse(node, p, true);
}

static void mask(JsonNode node, Pattern p) {
traverse(node, p, false);
}

private static void traverse(JsonNode node, Pattern p, boolean remove) {
if (node.isObject()) {
ObjectNode obj = (ObjectNode) node;
Iterator<Map.Entry<String, JsonNode>> it = obj.fields();
while (it.hasNext()) {
Map.Entry<String, JsonNode> e = it.next();
String key = e.getKey();
if (p.matcher(key).matches()) {
if (remove) {
it.remove();
} else {
obj.put(key, "****");
}
} else {
traverse(e.getValue(), p, remove);
}
}
} else if (node.isArray()) {
for (JsonNode child : node) {
traverse(child, p, remove);
}
}
}
}
Loading