oxcache 0.2.0 - Docs.rs

//! Copyright (c) 2025-2026, Kirky.X
//!
//! MIT License
//!
//! 敏感信息脱敏工具
//!
//! 提供日志脱敏功能，防止敏感信息泄露到日志中

use std::fmt;

/// 脱敏敏感信息
///
/// # 参数
/// * `value` - 需要脱敏的值
/// * `visible_chars` - 保留的可见字符数（默认4）
///
/// # 返回值
/// 返回脱敏后的字符串，格式为：`****{last_chars}`
///
/// # 示例
/// ```
/// use oxcache::redact_value;
/// let masked = redact_value("password123", 3);
/// assert_eq!(masked, "****123");
/// ```
pub fn redact_value(value: &str, visible_chars: usize) -> String {
    if value.len() <= visible_chars {
        // 如果值太短，完全隐藏
        "*".repeat(value.len())
    } else {
        format!("{}{}", "*".repeat(4), &value[value.len() - visible_chars..])
    }
}

/// 脱敏连接字符串
///
/// 移除密码部分，防止敏感信息泄露
/// 格式: redis://:password@host:port 或 redis://user:password@host:port /* pragma: allowlist secret */
///
/// # 参数
/// * `connection_string` - 连接字符串
///
/// # 返回值
/// 返回脱敏后的连接字符串
pub fn redact_connection_string(connection_string: &str) -> String {
    // 安全修复：正确解析并移除密码部分
    // 格式: protocol://[user[:password]@]host:port

    if let Some(at_idx) = connection_string.find('@') {
        // 找到@符号，分离认证信息和主机信息
        let auth_part = &connection_string[..at_idx];
        let host_part = &connection_string[at_idx..]; // 包含@

        // 查找 protocol:// 后面的位置
        let protocol_end = if let Some(protocol_idx) = auth_part.find("://") {
            protocol_idx + 3 // 跳过 "://"
        } else {
            0
        };

        if let Some(colon_idx) = auth_part[protocol_end..].rfind(':') {
            // 找到冒号，分离用户和密码
            let colon_idx = protocol_end + colon_idx;
            let user_part = &auth_part[..colon_idx];
            return format!("{}:****{}", user_part, host_part);
        } else {
            // 没有密码，只有用户
            return format!("{}:****{}", auth_part, host_part);
        }
    }

    // 没有@符号，返回原字符串
    connection_string.to_string()
}

/// 脱敏缓存键
///
/// 如果键可能包含敏感信息（如用户ID、令牌等），则进行脱敏
///
/// # 参数
/// * `key` - 缓存键
///
/// # 返回值
/// 返回脱敏后的键，如果键看起来不敏感则返回原值
pub fn redact_cache_key(key: &str) -> String {
    // 检查键是否可能包含敏感信息
    let sensitive_patterns = [
        "token",
        "password",
        "secret",
        "api_key",
        "apikey",
        "auth",
        "credential",
        "session",
        "cookie",
        "jwt",
    ];

    let key_lower = key.to_lowercase();
    for pattern in &sensitive_patterns {
        if key_lower.contains(pattern) {
            // 键可能包含敏感信息，进行脱敏
            return redact_value(key, 4);
        }
    }

    // 如果键看起来不敏感，返回原值
    // 但仍然限制长度，防止日志过大
    if key.len() > 100 {
        format!("{}...", &key[..97])
    } else {
        key.to_string()
    }
}

/// 脱敏敏感字段
///
/// # 参数
/// * `field_name` - 字段名
/// * `value` - 字段值
///
/// # 返回值
/// 如果字段名表明是敏感字段，则返回脱敏后的值；否则返回原值
pub fn redact_field(field_name: &str, value: &str) -> String {
    let sensitive_fields = [
        "password",
        "secret",
        "token",
        "api_key",
        "apikey",
        "auth",
        "credential",
        "private_key",
        "access_token",
        "refresh_token",
        "session_key",
        "cookie",
    ];

    let field_lower = field_name.to_lowercase();
    for sensitive in &sensitive_fields {
        if field_lower.contains(sensitive) {
            return redact_value(value, 4);
        }
    }

    value.to_string()
}

/// 脱敏包装器
///
/// 用于在日志中安全地记录可能包含敏感信息的值
pub struct Redacted<T: fmt::Display> {
    value: T,
    visible_chars: usize,
}

impl<T: fmt::Display> Redacted<T> {
    /// 创建新的脱敏包装器
    pub fn new(value: T) -> Self {
        Self {
            value,
            visible_chars: 4,
        }
    }

    /// 设置可见字符数
    pub fn with_visible_chars(mut self, visible_chars: usize) -> Self {
        self.visible_chars = visible_chars;
        self
    }
}

impl<T: fmt::Display> fmt::Display for Redacted<T> {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        let value = self.value.to_string();
        write!(f, "{}", redact_value(&value, self.visible_chars))
    }
}

impl<T: fmt::Display> fmt::Debug for Redacted<T> {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        write!(f, "\"{}\"", self)
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn test_redact_value() {
        assert_eq!(redact_value("password123", 3), "****123");
        assert_eq!(redact_value("abc", 4), "***");
        assert_eq!(redact_value("a", 1), "*");
        assert_eq!(redact_value("longpassword", 5), "****sword");
    }

    #[test]
    fn test_redact_connection_string() {
        assert_eq!(
            redact_connection_string("redis://:mypassword@localhost:6379"), /* pragma: allowlist secret */
            "redis://:****@localhost:6379"
        );
        assert_eq!(
            redact_connection_string("redis://user:mypassword@localhost:6379"), /* pragma: allowlist secret */
            "redis://user:****@localhost:6379"
        );
        assert_eq!(
            redact_connection_string("redis://user@localhost:6379"),
            "redis://user:****@localhost:6379"
        );
        assert_eq!(
            redact_connection_string("redis://localhost:6379"),
            "redis://localhost:6379"
        );
    }

    #[test]
    fn test_redact_cache_key() {
        assert_eq!(redact_cache_key("user_token_abc123"), "****c123");
        assert_eq!(redact_cache_key("user_profile_123"), "user_profile_123");
        assert_eq!(
            redact_cache_key("very_long_cache_key_that_exceeds_normal_length_limit"),
            "very_long_cache_key_that_exceeds_normal_length_limit"
        );
    }

    #[test]
    fn test_redacted_wrapper() {
        let redacted = Redacted::new("secret_value");
        assert_eq!(redacted.to_string(), "****alue");

        let redacted = Redacted::new("secret_value").with_visible_chars(6);
        assert_eq!(redacted.to_string(), "****_value");
    }

    // ============================================================================
    // redact_connection_string 边界测试 (line 58)
    // ============================================================================

    #[test]
    fn test_redact_connection_string_no_protocol() {
        // 没有 :// 的连接字符串 (line 58: protocol_end = 0)
        let result = redact_connection_string("user:password@host:6379"); /* pragma: allowlist secret */
        assert!(result.contains("****"));
        assert!(!result.contains("password"));
    }

    #[test]
    fn test_redact_connection_string_only_user_no_colon() {
        // 有 @ 但没有冒号分隔用户和密码
        let result = redact_connection_string("redis://user@host:6379");
        assert_eq!(result, "redis://user:****@host:6379");
    }

    #[test]
    fn test_redact_connection_string_empty() {
        let result = redact_connection_string("");
        assert_eq!(result, "");
    }

    // ============================================================================
    // redact_cache_key 长键截断测试 (line 111)
    // ============================================================================

    #[test]
    fn test_redact_cache_key_long_key_truncation() {
        // 超过 100 字符的非敏感键应该被截断 (line 111)
        let long_key = "a".repeat(150);
        let result = redact_cache_key(&long_key);
        assert!(result.ends_with("..."));
        assert_eq!(result.len(), 100); // 97 chars + "..."
    }

    #[test]
    fn test_redact_cache_key_exact_100_chars() {
        // 恰好 100 字符的键不应该被截断
        let key = "a".repeat(100);
        let result = redact_cache_key(&key);
        assert_eq!(result, key);
    }

    #[test]
    fn test_redact_cache_key_101_chars() {
        // 101 字符的键应该被截断
        let key = "a".repeat(101);
        let result = redact_cache_key(&key);
        assert!(result.ends_with("..."));
    }

    // ============================================================================
    // redact_field 测试 (lines 125-126, 141-144, 148)
    // ============================================================================

    #[test]
    fn test_redact_field_password() {
        let result = redact_field("password", "secret123");
        assert_eq!(result, "****t123");
    }

    #[test]
    fn test_redact_field_secret() {
        let result = redact_field("client_secret", "mysecret");
        assert_eq!(result, "****cret");
    }

    #[test]
    fn test_redact_field_token() {
        let result = redact_field("access_token", "tok_abc123");
        assert_eq!(result, "****c123");
    }

    #[test]
    fn test_redact_field_api_key() {
        let result = redact_field("api_key", "key_abc123");
        assert_eq!(result, "****c123");
    }

    #[test]
    fn test_redact_field_apikey() {
        let result = redact_field("apikey", "key_value");
        assert_eq!(result, "****alue");
    }

    #[test]
    fn test_redact_field_auth() {
        let result = redact_field("authorization", "bearer xyz");
        assert_eq!(result, "**** xyz");
    }

    #[test]
    fn test_redact_field_credential() {
        let result = redact_field("credentials", "user:pass");
        assert_eq!(result, "****pass");
    }

    #[test]
    fn test_redact_field_private_key() {
        let result = redact_field("private_key", "-----BEGIN...");
        assert_eq!(result, "****N...");
    }

    #[test]
    fn test_redact_field_access_token() {
        let result = redact_field("access_token", "tok123");
        assert_eq!(result, "****k123");
    }

    #[test]
    fn test_redact_field_refresh_token() {
        let result = redact_field("refresh_token", "ref123");
        assert_eq!(result, "****f123");
    }

    #[test]
    fn test_redact_field_session_key() {
        let result = redact_field("session_key", "sess123");
        assert_eq!(result, "****s123");
    }

    #[test]
    fn test_redact_field_cookie() {
        let result = redact_field("cookie", "session=abc");
        assert_eq!(result, "****=abc");
    }

    #[test]
    fn test_redact_field_non_sensitive() {
        // 非敏感字段返回原值 (line 148)
        let result = redact_field("username", "alice");
        assert_eq!(result, "alice");
    }

    #[test]
    fn test_redact_field_non_sensitive_long() {
        let result = redact_field("description", "some long description");
        assert_eq!(result, "some long description");
    }

    #[test]
    fn test_redact_field_case_insensitive() {
        // 字段名大小写不敏感
        let result = redact_field("PASSWORD", "secret123");
        assert_eq!(result, "****t123");
    }

    // ============================================================================
    // redact_value 边界测试
    // ============================================================================

    #[test]
    fn test_redact_value_empty() {
        assert_eq!(redact_value("", 4), "");
    }

    #[test]
    fn test_redact_value_exact_visible_chars() {
        // 值长度等于 visible_chars 时，值太短，完全隐藏
        assert_eq!(redact_value("abcd", 4), "****");
    }

    #[test]
    fn test_redact_value_zero_visible() {
        // visible_chars = 0
        assert_eq!(redact_value("test", 0), "****");
    }

    // ============================================================================
    // Redacted 包装器测试 (lines 183-184)
    // ============================================================================

    #[test]
    fn test_redacted_debug() {
        // 测试 Debug 实现 (lines 183-184)
        let redacted = Redacted::new("secret_value");
        let debug_str = format!("{:?}", redacted);
        assert!(debug_str.starts_with("\""));
        assert!(debug_str.ends_with("\""));
        assert!(debug_str.contains("****"));
    }

    #[test]
    fn test_redacted_with_visible_chars_zero() {
        let redacted = Redacted::new("secret_value").with_visible_chars(0);
        assert_eq!(redacted.to_string(), "****");
    }

    #[test]
    fn test_redacted_short_value() {
        // 值短于 visible_chars
        let redacted = Redacted::new("ab").with_visible_chars(4);
        assert_eq!(redacted.to_string(), "**");
    }

    #[test]
    fn test_redacted_with_numeric_value() {
        let redacted = Redacted::new(123456789);
        let s = redacted.to_string();
        assert!(s.starts_with("****"));
    }

    // ============================================================================
    // redact_cache_key 敏感模式测试
    // ============================================================================

    #[test]
    fn test_redact_cache_key_session() {
        let result = redact_cache_key("session_abc123");
        assert_eq!(result, "****c123");
    }

    #[test]
    fn test_redact_cache_key_cookie() {
        let result = redact_cache_key("cookie_xyz789");
        assert_eq!(result, "****z789");
    }

    #[test]
    fn test_redact_cache_key_jwt() {
        let result = redact_cache_key("jwt_token_abc");
        assert_eq!(result, "****_abc");
    }

    #[test]
    fn test_redact_cache_key_credential() {
        let result = redact_cache_key("credential_123");
        assert_eq!(result, "****_123");
    }

    #[test]
    fn test_redact_cache_key_apikey() {
        let result = redact_cache_key("apikey_test");
        assert_eq!(result, "****test");
    }

    #[test]
    fn test_redact_cache_key_api_key() {
        let result = redact_cache_key("api_key_test");
        assert_eq!(result, "****test");
    }

    #[test]
    fn test_redact_cache_key_normal() {
        let result = redact_cache_key("user_profile_123");
        assert_eq!(result, "user_profile_123");
    }
}