Protect logger from trace and debug in production (#527)

* Protec logger from trace and debug in production * Better error message
2023-06-01 16:33:25 +02:00 · 2023-06-01 16:33:25 +02:00 · b75a66497b
commit b75a66497b
parent 6a9da7ac38
2 changed files with 17 additions and 1 deletions
--- a/.changeset/wet-points-deny.md
+++ b/.changeset/wet-points-deny.md
@ -0,0 +1,5 @@
+---
+"@saleor/apps-shared": minor
+---
+
+Disabled possibility to create logger if level is DEBUG or TRACE and NODE_ENV is production. This is an additional protection for logging sensitive data.
--- a/packages/shared/src/logger.ts
+++ b/packages/shared/src/logger.ts
@ -1,10 +1,21 @@
 import pino from "pino";

+const forbiddenProductionLevels = ["debug", "trace"];
+
+const logLevel = process.env.APP_LOG_LEVEL ?? "silent";
+
+if (process.env.NODE_ENV === "production" && forbiddenProductionLevels.includes(logLevel)) {
+  throw new Error(
+    `Production app can only log INFO or higher log level. "${logLevel}" is development only.`
+  );
+  process.exit(1);
+}
+
 /**
 * TODO Set up log drain etc
 */
 export const logger = pino({
-  level: process.env.APP_LOG_LEVEL ?? "silent",
+  level: logLevel,
  redact: ["token", "apiKey"],
  transport:
    process.env.NODE_ENV === "development"