hcq/MaxScale
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
13,438 Commits 1 Branch 0 Tags
add488366b59184eaad9da4bce4eaa1fdfda21c1
Commit Graph

28 Commits

Author SHA1 Message Date
Johan Wikman
3a5a8b13b9 MXS-2457 Treat string args as fields 
The masking filter will now consider all string arguments to
functions to be fields. This in order to prevent bypassing of
the masking with

    > set @@sql_mode='ANSI_QUOTES';
    > select concat("ssn") from masking;

This may lead to false positives, but no can do.
 2019-05-03 13:38:12 +03:00
Johan Wikman
5346b24fa4 MXS-2393 Add parameter 'require_fully_parsed' 
If set to true and if any of the other blocking related parameters
is true, then a statement that cannot be fully parsed will be blocked.

Default is true.
 2019-04-01 10:52:52 +03:00
Johan Wikman
8b4961261f MXS-2403 Update documentation 2019-03-25 15:26:17 +02:00
Johan Wikman
8b329f7f33 MXS-2403 Add 'check_subqueries' parameter 
Only documentation and parameter handling.
 2019-03-25 15:26:17 +02:00
Johan Wikman
ca8350ae35 MXS-2402 Document and handle 'check_unions' parameter 
Only parameter handling, no actual functionality.
 2019-03-25 15:24:35 +02:00
Johan Wikman
76ac63096c MXS-2396 Add check_user_variables configuration parameter 
The masking filter should check for things like

    set @ssn = (SELECT ssn FROM users WHERE id = 1);

so that

    select @ssn;

is not possible.
 2019-03-20 15:11:58 +02:00
Esa Korhonen
ab7daa9327 Add table of contents to filter documentation 
Only added the TOC to the longest files.
 2018-11-26 10:32:08 +02:00
Johan Wikman
5b3a209643 Update the masking documentation 2018-11-09 12:05:13 +02:00
Johan Wikman
d339b89990 MXS-1774 Make rejection of functions optional 
It is now possible to prevent the masking filter from rejecting
statements using functions in conjunction with fields to be
masked. So now it is possible to not use the blanket rejection
of the masking filter and replace it with more detailed firewall
rules.
 2018-07-06 11:20:31 +03:00
Markus Mäkelä
ec4569497e Merge branch '2.1' into 2.2 2018-05-14 10:14:16 +03:00
Markus Mäkelä
48aa76e1d4 Fix invalid JSON in masking filter documentation 
The example JSON was missing a comma where one was expected.
 2018-05-10 22:26:32 +03:00
Markus Mäkelä
a544239540 Fix masking filter documentation 
The example had invalid JSON in it.
 2018-05-10 22:24:14 +03:00
Johan Wikman
d948fb2dfc MXS-1733 Add documentation 2018-03-26 10:02:57 +03:00
Johan Wikman
b8e72c939d Be specific about the dangers of obfuscation 2018-01-22 13:19:03 +02:00
MassimilianoPinto
741c6d9aaf Documentation update for obfuscation method 
Example changed to reflect new algorithm output
 2017-07-18 11:18:32 +02:00
MassimilianoPinto
ac142a1b71 Documentation update with 'obfuscate' rule and 'match' option in 'replace' rule 
Documentation update with 'obfuscate' rule and 'match' option in
'replace' rule
 2017-07-17 12:16:43 +02:00
Esa Korhonen
2990edc424 Update MaskingFilter documentation 2017-06-05 13:47:39 +03:00
Johan Wikman
b971ad2cf5 Update masking documentation 2017-05-02 13:54:04 +03:00
Johan Wikman
0e037e4005 Add full masking example 2017-02-09 15:02:34 +02:00
Johan Wikman
ac0679a9d5 Update filter documentation 
- Add note about filters having become available in 2.1.
- Add insertstream to release notes and change log.
- Add complete example to cache documentation.
 2017-02-09 15:02:34 +02:00
Johan Wikman
3689d95c34 Fix masking documentation 2017-01-27 13:36:17 +02:00
Johan Wikman
47d21bd519 Masking: Change "rules_file" parameter to "rules" 
The firewall filter and the cache have similar rules files and
they use "rules". To be consistent, the masking filter should
use "rules" as well.
 2017-01-23 15:17:23 +02:00
Johan Wikman
ce4e26477b Masking: Clarify documentation 2017-01-18 08:45:51 +02:00
Johan Wikman
969e423eb2 Masking: Add large_payload parameter 
The masking filter will assume payloads less than 2^24 - 1. The
behaviour if payloads larger than than are encountered can be
configured.

The actual implementation follows in a subsequent change.
 2017-01-18 08:44:04 +02:00
Johan Wikman
9a95e79dd6 Masking: Add parameter for warnings 
The masking filter can now be instructed to warn in case a masking
rule matches a column of a type that is not masked.
 2017-01-12 14:41:55 +02:00
Johan Wikman
e79e82b0a9 Update masking documentation 2017-01-12 14:41:55 +02:00
Johan Wikman
8127454f24 Masking: Add possibility to reload rules 2017-01-09 09:26:43 +02:00
Johan Wikman
30a3475898 Add documentation for masking filter 
MXS-910
 2016-12-29 11:50:42 +02:00