pub const DEFAULT_SENSITIVE_HEADER_NAMES: [&str; 21] = [
"Authorization",
"Proxy-Authorization",
"Api-Key",
"X-Api-Key",
"Bearer",
"Cookie",
"Set-Cookie",
"Secret-Key",
"Client-Secret",
"Access-Token",
"Refresh-Token",
"Private-Token",
"Session-Token",
"JWT-Token",
"Password",
"X-Auth-Password",
"X-Client-ID",
"X-Client-Secret",
"X-Auth-Token",
"X-Auth-App-Token",
"X-Auth-User-Token",
];
pub const DEFAULT_SENSITIVE_QUERY_PARAM_NAMES: [&str; 8] = [
"access_token",
"api_key",
"client_secret",
"id_token",
"password",
"refresh_token",
"secret",
"token",
];
pub const DEFAULT_SENSITIVE_BODY_FIELD_NAMES: [&str; 9] = [
"access_token",
"api_key",
"authorization",
"client_secret",
"id_token",
"password",
"refresh_token",
"secret",
"token",
];
pub(crate) fn canonicalize_structured_sensitive_name(name: &str) -> String {
name.trim()
.chars()
.filter(|ch| !matches!(ch, '_' | '-'))
.flat_map(char::to_lowercase)
.collect()
}