chore: move utilities to subpackage (#3)

* move utilities to subpackage
* move user visibility

Author: hgiasac

middleware.go

@@ -11,6 +11,7 @@ import (
 	"strings"
 	"time"
 
+	"github.com/hasura/gotel/otelutils"
 	"go.opentelemetry.io/otel"
 	"go.opentelemetry.io/otel/attribute"
 	"go.opentelemetry.io/otel/codes"
@@ -107,7 +108,7 @@ func (tm *tracingMiddleware) ServeHTTP( //nolint:gocognit,cyclop,funlen,maintidx
 		urlScheme = "http"
 	}
 
-	hostName, port, _ := SplitHostPort(r.Host)
+	hostName, port, _ := otelutils.SplitHostPort(r.Host)
 
 	switch {
 	case port > 0:
@@ -169,7 +170,7 @@ func (tm *tracingMiddleware) ServeHTTP( //nolint:gocognit,cyclop,funlen,maintidx
 		semconv.UserAgentOriginal(r.UserAgent()),
 	)
 
-	peer, peerPort, _ := SplitHostPort(r.RemoteAddr)
+	peer, peerPort, _ := otelutils.SplitHostPort(r.RemoteAddr)
 
 	if peer != "" {
 		span.SetAttributes(semconv.NetworkPeerAddress(peer))
@@ -180,7 +181,9 @@ func (tm *tracingMiddleware) ServeHTTP( //nolint:gocognit,cyclop,funlen,maintidx
 	}
 
 	requestBodySize := r.ContentLength
-	requestLogHeaders := NewTelemetryHeaders(r.Header, tm.Options.AllowedRequestHeaders...)
+	requestLogHeaders := otelutils.NewTelemetryHeaders(
+		r.Header,
+		tm.Options.AllowedRequestHeaders...)
 	requestLogData := map[string]any{
 		"url":            r.URL.String(),
 		"method":         r.Method,
@@ -189,7 +192,7 @@ func (tm *tracingMiddleware) ServeHTTP( //nolint:gocognit,cyclop,funlen,maintidx
 		"size":           requestBodySize,
 	}
 
-	SetSpanHeaderAttributes(span, "http.request.header", requestLogHeaders)
+	otelutils.SetSpanHeaderAttributes(span, "http.request.header", requestLogHeaders)
 
 	var (
 		ww             WrapResponseWriter
@@ -314,12 +317,14 @@ func (tm *tracingMiddleware) ServeHTTP( //nolint:gocognit,cyclop,funlen,maintidx
 	tm.Next.ServeHTTP(ww, rr)
 
 	statusCode := ww.Status()
-	responseLogHeaders := NewTelemetryHeaders(ww.Header(), tm.Options.AllowedResponseHeaders...)
+	responseLogHeaders := otelutils.NewTelemetryHeaders(
+		ww.Header(),
+		tm.Options.AllowedResponseHeaders...)
 	responseLogData["size"] = ww.BytesWritten()
 	responseLogData["headers"] = responseLogHeaders
 
 	span.SetAttributes(semconv.HTTPResponseBodySize(ww.BytesWritten()))
-	SetSpanHeaderAttributes(span, "http.response.header", responseLogHeaders)
+	otelutils.SetSpanHeaderAttributes(span, "http.response.header", responseLogHeaders)
 
 	// skip printing very large responses.
 	if responseReader != nil && ww.BytesWritten() < 100*1024 {

otelutils/utils.go

@@ -0,0 +1,158 @@
+// Package otelutils contain reusable utilities for OpenTelemetry attributes.
+package otelutils
+
+import (
+	"errors"
+	"fmt"
+	"net"
+	"net/http"
+	"regexp"
+	"slices"
+	"strconv"
+	"strings"
+
+	"go.opentelemetry.io/otel/attribute"
+	"go.opentelemetry.io/otel/trace"
+)
+
+// UserVisibilityAttribute is the attribute to display on the Trace view.
+var UserVisibilityAttribute = attribute.String("internal.visibility", "user")
+
+var sensitiveHeaderRegex = regexp.MustCompile(`auth|key|secret|token|password`)
+
+var excludedSpanHeaderAttributes = map[string]bool{
+	"baggage":           true,
+	"traceparent":       true,
+	"traceresponse":     true,
+	"tracestate":        true,
+	"x-b3-sampled":      true,
+	"x-b3-spanid":       true,
+	"x-b3-traceid":      true,
+	"x-b3-parentspanid": true,
+	"x-b3-flags":        true,
+	"b3":                true,
+}
+
+var errInvalidHostPort = errors.New("invalid host port")
+
+// SetSpanHeaderAttributes sets header attributes to the otel span.
+func SetSpanHeaderAttributes(
+	span trace.Span,
+	prefix string,
+	headers http.Header,
+	allowedHeaders ...string,
+) {
+	allowedHeadersLength := len(allowedHeaders)
+
+	for key, values := range headers {
+		lowerKey := strings.ToLower(key)
+
+		if (allowedHeadersLength == 0 && !excludedSpanHeaderAttributes[lowerKey]) ||
+			(allowedHeadersLength > 0 && slices.Contains(allowedHeaders, lowerKey)) {
+			span.SetAttributes(
+				attribute.StringSlice(fmt.Sprintf("%s.%s", prefix, lowerKey), values),
+			)
+		}
+	}
+}
+
+// NewTelemetryHeaders creates a new header map with sensitive values masked.
+func NewTelemetryHeaders(httpHeaders http.Header, allowedHeaders ...string) http.Header {
+	result := http.Header{}
+
+	if len(allowedHeaders) > 0 {
+		for _, key := range allowedHeaders {
+			value := httpHeaders.Get(key)
+
+			if value == "" {
+				continue
+			}
+
+			if IsSensitiveHeader(key) {
+				result.Set(strings.ToLower(key), MaskString(value))
+			} else {
+				result.Set(strings.ToLower(key), value)
+			}
+		}
+
+		return result
+	}
+
+	for key, headers := range httpHeaders {
+		if len(headers) == 0 {
+			continue
+		}
+
+		values := headers
+		if IsSensitiveHeader(key) {
+			values = make([]string, len(headers))
+			for i, header := range headers {
+				values[i] = MaskString(header)
+			}
+		}
+
+		result[key] = values
+	}
+
+	return result
+}
+
+// IsSensitiveHeader checks if the header name is sensitive.
+func IsSensitiveHeader(name string) bool {
+	return sensitiveHeaderRegex.MatchString(strings.ToLower(name))
+}
+
+// MaskString masks the string value for security.
+func MaskString(input string) string {
+	inputLength := len(input)
+
+	switch {
+	case inputLength <= 6:
+		return strings.Repeat("*", inputLength)
+	case inputLength < 12:
+		return input[0:1] + strings.Repeat("*", inputLength-1)
+	default:
+		return input[0:2] + strings.Repeat("*", 8) + fmt.Sprintf("(%d)", inputLength)
+	}
+}
+
+// SplitHostPort splits a network address hostport of the form "host",
+// "host%zone", "[host]", "[host%zone]", "host:port", "host%zone:port",
+// "[host]:port", "[host%zone]:port", or ":port" into host or host%zone and
+// port.
+//
+// An empty host is returned if it is not provided or unparsable. A negative
+// port is returned if it is not provided or unparsable.
+func SplitHostPort(hostport string) (string, int, error) {
+	port := -1
+
+	if strings.HasPrefix(hostport, "[") {
+		addrEnd := strings.LastIndex(hostport, "]")
+		if addrEnd < 0 {
+			// Invalid hostport.
+			return "", port, errInvalidHostPort
+		}
+
+		if i := strings.LastIndex(hostport[addrEnd:], ":"); i < 0 {
+			host := hostport[1:addrEnd]
+
+			return host, port, nil
+		}
+	} else {
+		if i := strings.LastIndex(hostport, ":"); i < 0 {
+			return hostport, port, nil
+		}
+	}
+
+	host, pStr, err := net.SplitHostPort(hostport)
+	if err != nil {
+		return host, port, err
+	}
+
+	p, err := strconv.ParseUint(pStr, 10, 16)
+	if err != nil {
+		return "", port, err
+	}
+
+	return host, int(p), err
+}

utils_test.go renamed to otelutils/utils_test.go

@@ -1,4 +1,4 @@
-package gotel
+package otelutils
 
 import (
 	"net/http"

provider.go

@@ -15,7 +15,6 @@ import (
 	"github.com/prometheus/client_golang/prometheus/collectors"
 	"go.opentelemetry.io/contrib/propagators/b3"
 	"go.opentelemetry.io/otel"
-	"go.opentelemetry.io/otel/attribute"
 	"go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc"
 	"go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp"
 	"go.opentelemetry.io/otel/exporters/otlp/otlptrace"
@@ -79,9 +78,6 @@ const (
 	OTELLogsExporterOTLP OTELLogsExporterType = "otlp"
 )
 
-// UserVisibilityAttribute is the attribute to display on the Trace view.
-var UserVisibilityAttribute = attribute.String("internal.visibility", "user")
-
 var (
 	errInvalidOTLPCompressionType = errors.New(
 		"invalid OTLP compression type, accept none, gzip only",

tracer.go

@@ -3,6 +3,7 @@ package gotel
 import (
 	"context"
 
+	"github.com/hasura/gotel/otelutils"
 	"go.opentelemetry.io/otel"
 	traceapi "go.opentelemetry.io/otel/trace"
 )
@@ -31,7 +32,7 @@ func (t *Tracer) Start(
 	return t.Tracer.Start( //nolint:spancheck
 		ctx,
 		spanName,
-		append(opts, traceapi.WithAttributes(UserVisibilityAttribute))...)
+		append(opts, traceapi.WithAttributes(otelutils.UserVisibilityAttribute))...)
 }
 
 // StartInternal creates a span and a context.Context containing the newly-created span.