add redaction

Author: naji247

pyproject.toml

@@ -18,9 +18,8 @@ classifiers = [
     "Programming Language :: Python :: 3.12",
 ]
 dependencies = [
-    "datafog>=4.1.1",
     "mcp>=1.0.0",
-    "mcpcat-api==0.1.1",
+    "mcpcat-api==0.1.3",
     "pydantic>=2.0.0",
 ]
 

src/mcpcat/modules/event_queue.py

@@ -17,7 +17,7 @@
 from .compatibility import get_mcp_compatible_error_message
 from .internal import get_server_tracking_data
 from .logging import write_to_log
-from .redaction import redact_event_sync
+from .redaction import redact_event
 from .session import get_session_info, set_last_activity
 
 
@@ -91,7 +91,7 @@ def _process_event(self, event: UnredactedEvent) -> None:
         if event and event.redaction_fn:
             # Redact sensitive information if a redaction function is provided
             try:
-                redacted_event = redact_event_sync(event)
+                redacted_event = redact_event(event, event.redaction_fn)
                 # The redacted event is already the full event object, not a dict
                 event = redacted_event
                 event.redaction_fn = None  # Clear the function to avoid reprocessing
@@ -192,10 +192,16 @@ def publish_event(server: Any, event: UnredactedEvent) -> None:
     session_info = get_session_info(server, data)
 
     # Create full event with all required fields
+    # Merge event data with session info (event fields take precedence)
+    event_data = event.model_dump(exclude_none=True)
+    session_data = session_info.model_dump(exclude_none=True)
+    
+    # Event fields take precedence over session fields
+    merged_data = {**event_data, **session_data}
+    
     full_event = UnredactedEvent(
+        **merged_data,
         project_id=data.project_id,
-        **event.model_dump(exclude={"project_id", "redaction_fn"}),
-        **session_info.model_dump(exclude_none=True),
         redaction_fn=data.options.redact_sensitive_information,
     )
 

src/mcpcat/modules/overrides/mcp_server.py

@@ -12,7 +12,7 @@
 from mcpcat.modules.tools import handle_report_missing
 
 from ...types import EventType, MCPCatData, UnredactedEvent
-from ..session import get_server_session_id
+from ..session import get_client_info_from_request_context, get_server_session_id
 
 
 def safe_request_context(server: Server) -> Optional[RequestContext]:
@@ -43,7 +43,6 @@ async def wrapped_initialize_handler(request: InitializeRequest) -> ServerResult
             timestamp=datetime.now(),
             parameters=request.params.model_dump() if request.params else {},
             event_type=EventType.MCP_INITIALIZE.value,
-            redaction_fn=data.options.redact_sensitive_information,
         )
 
         # Call the original handler
@@ -60,14 +59,14 @@ async def wrapped_list_tools_handler(request: ListToolsRequest) -> ServerResult:
         """Intercept list_tools requests to add MCPCat tools and modify existing ones."""
         session_id = get_server_session_id(server)
         request_context = safe_request_context(server)
+        get_client_info_from_request_context(server, request_context)
         identify_session(server, request, request_context)
         event = UnredactedEvent(
             session_id=session_id,
             timestamp=datetime.now(),
 
             parameters=request.params.model_dump() if request.params else {},
             event_type=EventType.MCP_TOOLS_LIST.value,
-            redaction_fn=data.options.redact_sensitive_information,
         )
 
         # Call the original handler to get the tools
@@ -137,6 +136,7 @@ async def wrapped_call_tool_handler(request: CallToolRequest) -> ServerResult:
         arguments = request.params.arguments or {}
         session_id = get_server_session_id(server)
         request_context = safe_request_context(server)
+        get_client_info_from_request_context(server, request_context)
         identify_session(server, request, request_context)
 
         write_to_log(f"Intercepted call to tool '{tool_name}' with arguments: {arguments} and request context: {request_context}")
@@ -147,7 +147,6 @@ async def wrapped_call_tool_handler(request: CallToolRequest) -> ServerResult:
             parameters=request.params.model_dump() if request.params else {},
             event_type=EventType.MCP_TOOLS_CALL.value,
             resource_name=tool_name,
-            redaction_fn=data.options.redact_sensitive_information,
         )
 
         # Handle report_missing tool directly

src/mcpcat/modules/redaction.py

@@ -1,19 +1,94 @@
 """PII redaction for MCPCat logs."""
 
-from typing import Any, TYPE_CHECKING
-
-from datafog import DataFog
-
+from typing import Any, TYPE_CHECKING, Callable, Set
 if TYPE_CHECKING:
     from mcpcat.types import Event, UnredactedEvent
 
 
-def defaultRedactor(text: str) -> str:
-    """Default redactor function for sensitive information."""
-    # Basic implementation - can be enhanced with actual redaction logic
-    return text
+# Set of field names that should be protected from redaction.
+# These fields contain system-level identifiers and metadata that
+# need to be preserved for analytics tracking.
+PROTECTED_FIELDS: Set[str] = {
+    'session_id',
+    'id',
+    'project_id',
+    'server',
+    'identify_actor_given_id',
+    'identify_actor_name',
+    'identify_data',
+    'resource_name',
+    'event_type',
+    'actor_id'
+}
+
+
+def redact_strings_in_object(
+    obj: Any,
+    redact_fn: Callable[[str], str],
+    path: str = '',
+    is_protected: bool = False
+) -> Any:
+    """
+    Recursively applies a redaction function to all string values in an object.
+    This ensures that sensitive information is removed from all string fields
+    before events are sent to the analytics service.
+    
+    Args:
+        obj: The object to redact strings from
+        redact_fn: The redaction function to apply to each string
+        path: The current path in the object tree (used to check protected fields)
+        is_protected: Whether the current object/value is within a protected field
+        
+    Returns:
+        A new object with all strings redacted
+    """
+    if obj is None:
+        return obj
+
+    # Handle strings
+    if isinstance(obj, str):
+        # Don't redact if this field or any parent field is protected
+        if is_protected:
+            return obj
+        return redact_fn(obj)
+
+    # Handle arrays/lists
+    if isinstance(obj, list):
+        return [redact_strings_in_object(item, redact_fn, f"{path}[{index}]", is_protected) 
+                for index, item in enumerate(obj)]
+
+    # Handle dictionaries/objects
+    if isinstance(obj, dict):
+        redacted_obj = {}
+        
+        for key, value in obj.items():
+            # Skip None values
+            if value is None:
+                continue
+                
+            # Build the path for nested fields
+            field_path = f"{path}.{key}" if path else key
+            # Check if this field is protected (only check at top level)
+            is_field_protected = is_protected or (path == '' and key in PROTECTED_FIELDS)
+            redacted_obj[key] = redact_strings_in_object(value, redact_fn, field_path, is_field_protected)
+        
+        return redacted_obj
+
+    # For all other types (numbers, booleans, etc.), return as-is
+    return obj
 
 
-def redact_event_sync(event: "UnredactedEvent") -> "Event":
-    """Synchronous version to redact sensitive information from an event."""
-    return event
+def redact_event(event: "UnredactedEvent", redact_fn: Callable[[str], str]) -> "Event":
+    """
+    Applies the customer's redaction function to all string fields in an Event object.
+    This is the main entry point for redacting sensitive information from events
+    before they are sent to the analytics service.
+    
+    Args:
+        event: The event to redact
+        redact_fn: The customer's redaction function
+        
+    Returns:
+        A new event object with all strings redacted
+    """
+    return redact_strings_in_object(event, redact_fn, '', False)

src/mcpcat/modules/session.py

@@ -4,10 +4,14 @@
 from datetime import datetime, timedelta
 from typing import Any
 
+from mcp import Implementation
+from mcp.shared.context import RequestContext 
 from mcp.server import Server
+from mcp.server.session import ServerSession
 
 from mcpcat.modules.constants import INACTIVITY_TIMEOUT_IN_MINUTES, SESSION_ID_PREFIX
 from mcpcat.modules.internal import get_server_tracking_data, set_server_tracking_data
+from mcpcat.modules.logging import write_to_log
 
 from ..types import MCPCatData, SessionInfo
 from ..utils import generate_prefixed_ksuid
@@ -25,6 +29,24 @@ def get_mcpcat_version() -> str | None:
         return None
 
 
+def get_client_info_from_request_context(server: Server, request_context: RequestContext) -> None:
+    data = get_server_tracking_data(server)
+    if not data:
+        return
+
+    # If client name and version are already set, no need to fetch again
+    if data.session_info.client_name and data.session_info.client_version:
+        return
+
+    try:
+        client_info = request_context.session.client_params.clientInfo
+        data.session_info.client_name = client_info.name if client_info else None
+        data.session_info.client_version = client_info.version if client_info else None
+        set_server_tracking_data(server, data)
+    except Exception as e:
+        write_to_log(f"Failed to get client info from request context: {e}")
+        return
+
 def get_session_info(server: Server, data: MCPCatData | None = None) -> SessionInfo:
     """Get session information for the current MCP session."""
     actor_info = None
@@ -37,11 +59,11 @@ def get_session_info(server: Server, data: MCPCatData | None = None) -> SessionI
         mcpcat_version=get_mcpcat_version(),
         server_name=server.name if hasattr(server, 'name') else None,
         server_version=server.version if hasattr(server, 'version') else None,
-        client_name=data.session_info.client_name if data else None,
-        client_version=data.session_info.client_version if data else None,
+        client_name=data.session_info.client_name if data and data.session_info else None,
+        client_version=data.session_info.client_version if data and data.session_info else None,
         identify_actor_given_id=actor_info.userId if actor_info else None,
         identify_actor_name=actor_info.userName if actor_info else None,
-        identify_actor_data=actor_info.userData if actor_info else None,
+        identify_data=actor_info.userData if actor_info else None,
     )
 
     if not data:

src/mcpcat/types.py

@@ -13,8 +13,6 @@
 # Type alias for redaction function
 RedactionFunction = Callable[[str], str | Awaitable[str]]
 
-# Import default redactor
-from .modules.redaction import defaultRedactor
 
 
 @dataclass
@@ -36,7 +34,7 @@ class SessionInfo(BaseModel):
     client_version: Optional[str] = None
     identify_actor_given_id: Optional[str] = None  # Actor ID for mcpcat:identify events
     identify_actor_name: Optional[str] = None  # Actor name for mcpcat:identify events
-    identify_actor_data: Optional[dict[str, Any]] = None
+    identify_data: Optional[dict[str, Any]] = None
 
 class Event(PublishEventRequest):
     pass
@@ -68,7 +66,7 @@ class MCPCatOptions:
     enable_tracing: bool = True
     enable_tool_call_context: bool = True
     identify: IdentifyFunction | None = None
-    redact_sensitive_information: RedactionFunction | None = defaultRedactor
+    redact_sensitive_information: RedactionFunction | None = None
 
 @dataclass
 class MCPCatData: