扩展 AuditedAttribute 以替代或屏蔽审计值
Extending AuditedAttribute to substitute or mask audited values
我正在使用 ABP 版本 3.8.2。我启用了 ABP Audit Logging,它工作正常。
是否有任何方法可以用不同的值替换或屏蔽审计日志值,以隐藏密码、信用卡详细信息等敏感信息?也许通过扩展 ABP 的 Audited 属性。
请多多指教。
是的,您可以替换或屏蔽审核值以隐藏敏感信息。
实施MaskableAuditSerializer:
public class MaskableAuditSerializer : IAuditSerializer, ITransientDependency
{
private readonly IAuditingConfiguration _configuration;
public MaskableJsonNetAuditSerializer(IAuditingConfiguration configuration)
{
_configuration = configuration;
}
public string Serialize(object obj)
{
var options = new JsonSerializerSettings
{
ContractResolver = new MaskableAuditingContractResolver(_configuration.IgnoredTypes)
};
return JsonConvert.SerializeObject(obj, options);
}
}
通过继承AuditingContractResolver实现MaskableAuditingContractResolver:
public class MaskableAuditingContractResolver : AuditingContractResolver
{
public MaskableAuditingContractResolver(List<Type> ignoredTypes)
: base(ignoredTypes)
{
}
protected override JsonProperty CreateProperty(MemberInfo member, MemberSerialization memberSerialization)
{
var property = base.CreateProperty(member, memberSerialization);
if (member.IsDefined(typeof(MaskedAuditedAttribute)))
{
property.ValueProvider = new MaskedValueProvider();
}
return property;
}
}
实施MaskedValueProvider:
public class MaskedValueProvider : IValueProvider
{
public object GetValue(object target)
{
return "***";
}
public void SetValue(object target, object value)
{
throw new NotImplementedException();
}
}
通过继承AuditedAttribute实现MaskedAuditedAttribute:
public class MaskedAuditedAttribute : AuditedAttribute
{
}
用法
public class LoginViewModel
{
[MaskedAudited]
public string Password { get; set; }
// ...
}
我正在使用 ABP 版本 3.8.2。我启用了 ABP Audit Logging,它工作正常。
是否有任何方法可以用不同的值替换或屏蔽审计日志值,以隐藏密码、信用卡详细信息等敏感信息?也许通过扩展 ABP 的 Audited 属性。
请多多指教。
是的,您可以替换或屏蔽审核值以隐藏敏感信息。
实施
MaskableAuditSerializer:public class MaskableAuditSerializer : IAuditSerializer, ITransientDependency { private readonly IAuditingConfiguration _configuration; public MaskableJsonNetAuditSerializer(IAuditingConfiguration configuration) { _configuration = configuration; } public string Serialize(object obj) { var options = new JsonSerializerSettings { ContractResolver = new MaskableAuditingContractResolver(_configuration.IgnoredTypes) }; return JsonConvert.SerializeObject(obj, options); } }通过继承
AuditingContractResolver实现MaskableAuditingContractResolver:public class MaskableAuditingContractResolver : AuditingContractResolver { public MaskableAuditingContractResolver(List<Type> ignoredTypes) : base(ignoredTypes) { } protected override JsonProperty CreateProperty(MemberInfo member, MemberSerialization memberSerialization) { var property = base.CreateProperty(member, memberSerialization); if (member.IsDefined(typeof(MaskedAuditedAttribute))) { property.ValueProvider = new MaskedValueProvider(); } return property; } }实施
MaskedValueProvider:public class MaskedValueProvider : IValueProvider { public object GetValue(object target) { return "***"; } public void SetValue(object target, object value) { throw new NotImplementedException(); } }通过继承
AuditedAttribute实现MaskedAuditedAttribute:public class MaskedAuditedAttribute : AuditedAttribute { }
用法
public class LoginViewModel
{
[MaskedAudited]
public string Password { get; set; }
// ...
}