tools/Custom/HttpMessageLogFormatter.cs

// ------------------------------------------------------------------------------
//  Copyright (c) Microsoft Corporation.  All Rights Reserved.  Licensed under the MIT License.  See License in the project root for license information.
// ------------------------------------------------------------------------------

namespace NamespacePrefixPlaceholder.PowerShell
{
    using NamespacePrefixPlaceholder.PowerShell.Models;
    using Newtonsoft.Json;
    using System;
    using System.Collections.Generic;
    using System.IO;
    using System.Linq;
    using System.Net.Http;
    using System.Net.Http.Headers;
    using System.Text;
    using System.Text.RegularExpressions;
    using System.Threading.Tasks;
    using System.Xml.Linq;

    public static class HttpMessageLogFormatter
    {
        internal static async Task<HttpRequestMessage> CloneAsync(this HttpRequestMessage originalRequest)
        {
            var newRequest = new HttpRequestMessage(originalRequest.Method, originalRequest.RequestUri);

            // Copy requestClone headers.
            foreach (var header in originalRequest.Headers)
                newRequest.Headers.TryAddWithoutValidation(header.Key, header.Value);

            // Copy requestClone properties.
            foreach (var property in originalRequest.Properties)
                newRequest.Properties.Add(property);

            // Set Content if previous requestClone had one.
            if (originalRequest.Content != null)
            {
                // Try cloning request content; otherwise, skip due to https://github.com./dotnet/corefx/pull/19082 in .NET 4.x.
                try
                {
                    // HttpClient doesn't rewind streams and we have to explicitly do so.
                    var ms = new MemoryStream();
                    await originalRequest.Content.CopyToAsync(ms).ConfigureAwait(false);
                    ms.Position = 0;
                    newRequest.Content = new StreamContent(ms);
                    // Attempt to copy request content headers with a single retry.
                    // HttpHeaders dictionary is not thread-safe when targeting anything below .NET 7. For more information, see https://github.com./dotnet/runtime/issues/61798.
                    int retryCount = 0;
                    int maxRetryCount = 2;
                    while (retryCount < maxRetryCount)
                    {
                        try
                        {
                            originalRequest.Content?.Headers?.ToList().ForEach(header => newRequest.Content?.Headers.TryAddWithoutValidation(header.Key, header.Value));
                            retryCount = maxRetryCount;
                        }
                        catch (InvalidOperationException)
                        {
                            retryCount++;
                        }
                    }
                }
                catch
                {
                }
            }
            return newRequest;
        }

        public static async Task<string> GetHttpRequestLogAsync(HttpRequestMessage request)
        {
            if (request == null) return string.Empty;
            var requestClone = await request.CloneAsync().ConfigureAwait(false);
            string body = string.Empty;
            try
            {
                if (requestClone.Content != null)
                {
                    body = FormatString(await requestClone.Content.ReadAsStringAsync());
                }
                else if (requestClone.Content == null && request.Content != null)
                {
                    body = "Skipped: Content body was disposed before the logger could access it.";
                }
            }
            catch { }

            StringBuilder stringBuilder = new StringBuilder();
            stringBuilder.AppendLine($"============================ HTTP REQUEST ============================{Environment.NewLine}");
            stringBuilder.AppendLine($"HTTP Method:{Environment.NewLine}{requestClone.Method}{Environment.NewLine}");
            stringBuilder.AppendLine($"Absolute Uri:{Environment.NewLine}{requestClone.RequestUri}{Environment.NewLine}");
            stringBuilder.AppendLine($"Headers:{Environment.NewLine}{HeadersToString(requestClone.Headers)}{Environment.NewLine}");
            stringBuilder.AppendLine($"Body:{Environment.NewLine}{SanitizeBody(body)}{Environment.NewLine}");
            return stringBuilder.ToString();
        }

        public static async Task<string> GetHttpResponseLogAsync(HttpResponseMessage response)
        {
            if (response == null) return string.Empty;

            string body = string.Empty;
            try
            {
                body = (response.Content == null) ? string.Empty : FormatString(await response.Content.ReadAsStringAsync());
            }
            catch { }

            StringBuilder stringBuilder = new StringBuilder();
            stringBuilder.AppendLine($"============================ HTTP RESPONSE ============================{Environment.NewLine}");
            stringBuilder.AppendLine($"Status Code:{Environment.NewLine}{response.StatusCode}{Environment.NewLine}");
            stringBuilder.AppendLine($"Headers:{Environment.NewLine}{HeadersToString(response.Headers)}{Environment.NewLine}");
            stringBuilder.AppendLine($"Body:{Environment.NewLine}{SanitizeBody(body)}{Environment.NewLine}");
            return stringBuilder.ToString();
        }

        public static async Task<string> GetErrorLogAsync(HttpResponseMessage response, IMicrosoftGraphODataErrorsMainError odataError)
        {
            if (response == null) return string.Empty;

            StringBuilder stringBuilder = new StringBuilder();
            stringBuilder.AppendLine($"{odataError?.Message}{Environment.NewLine}");
            stringBuilder.AppendLine($"Status: {((int)response.StatusCode)} ({response.StatusCode})");
            stringBuilder.AppendLine($"ErrorCode: {odataError?.Code}");
            stringBuilder.AppendLine($"Date: {odataError?.InnerError?.Date}{Environment.NewLine}");
            stringBuilder.AppendLine($"Headers:{Environment.NewLine}{HeadersToString(response.Headers)}{Environment.NewLine}");
            return stringBuilder.ToString();
        }

        internal static string HeadersToString(HttpHeaders headers)
        {
            return HeadersToString(ConvertHttpHeadersToCollection(headers));
        }

        private static readonly Regex regexPattern = new Regex("(\\s*\"access_token\"\\s*:\\s*)\"[^\"]+\"", RegexOptions.Compiled);
        private static object SanitizeBody(string body)
        {
            IList<Regex> regexList = new List<Regex>();
            // Remove access_token:*  instances in body.
            regexList.Add(regexPattern);

            foreach (Regex matcher in regexList)
            {
                body = matcher.Replace(body, "$1\"<redacted>\"");
            }
            // Remove password:*  instances in body.
            body = AbstractPasswords(body);
            return body;
        }

        private static IDictionary<string, IEnumerable<string>> ConvertHttpHeadersToCollection(HttpHeaders headers)
        {
            headers.Remove("Authorization");
            return headers.ToDictionary(a => a.Key, a => a.Value);
        }

        private static string HeadersToString(IDictionary<string, IEnumerable<string>> headers)
        {
            StringBuilder stringBuilder = headers.Aggregate(new StringBuilder(),
                (sb, kvp) => sb.AppendLine(string.Format("{0,-30}: {1}", kvp.Key, String.Join(",", kvp.Value.ToArray()))));

            if (stringBuilder.Length > 0)
                stringBuilder.Remove(stringBuilder.Length - 2, 2);

            return stringBuilder.ToString();
        }

        private static string FormatString(string content)
        {
            try
            {
                content = content.Trim();
                if ((content.StartsWith("{") && content.EndsWith("}")) || // object
                    (content.StartsWith("[") && content.EndsWith("]"))) // array
                {
                    return JsonConvert.SerializeObject(JsonConvert.DeserializeObject(content), Formatting.Indented);
                }
                if (content.StartsWith("<"))
                {
                    return XDocument.Parse(content).ToString();
                }
            }
            catch
            {
                return content;
            }

            if (content.Length > Microsoft.Graph.PowerShell.Authentication.Constants.MaxContentLength)
            {
                return content.Substring(0, Microsoft.Graph.PowerShell.Authentication.Constants.MaxContentLength) + "\r\nDATA TRUNCATED DUE TO SIZE\r\n";
            }

            return content;
        }
        private static string AbstractPasswords(string content)
        {

            // Check if the JSON string contains "password" (case-insensitive)
            if (content.IndexOf("password", StringComparison.OrdinalIgnoreCase) >= 0)
            {
                // Deserialize JSON into Dictionary
                var obj = JsonConvert.DeserializeObject<Dictionary<string, object>>(content);

                // Replace values for properties containing "password" (case-insensitive)
                foreach (var key in obj.Keys)
                {
                    if (key.IndexOf("password", StringComparison.OrdinalIgnoreCase) >= 0)
                    {
                        obj[key] = "***";
                    }
                }

                // Serialize the updated dictionary back to JSON
                content = JsonConvert.SerializeObject(obj, Formatting.Indented);

            }
            return content;
        }
    }
}