Add username log censor setting

Co-Authored-By: Paperclip <noreply@paperclip.ing>
2026-06-17 11:20:37 +09:00 · 2026-03-20 08:00:39 -05:00 · 2026-03-20 08:00:39 -05:00 · 39878fcdfe
commit 39878fcdfe
parent 3de7d63ea9
33 changed files with 10841 additions and 146 deletions
--- a/server/src/services/approvals.ts
+++ b/server/src/services/approvals.ts
@ -6,22 +6,24 @@ import { redactCurrentUserText } from "../log-redaction.js";
 import { agentService } from "./agents.js";
 import { budgetService } from "./budgets.js";
 import { notifyHireApproved } from "./hire-hook.js";
-
-function redactApprovalComment<T extends { body: string }>(comment: T): T {
-  return {
-    ...comment,
-    body: redactCurrentUserText(comment.body),
-  };
-}
+import { instanceSettingsService } from "./instance-settings.js";

 export function approvalService(db: Db) {
  const agentsSvc = agentService(db);
  const budgets = budgetService(db);
+  const instanceSettings = instanceSettingsService(db);
  const canResolveStatuses = new Set(["pending", "revision_requested"]);
  const resolvableStatuses = Array.from(canResolveStatuses);
  type ApprovalRecord = typeof approvals.$inferSelect;
  type ResolutionResult = { approval: ApprovalRecord; applied: boolean };

+  function redactApprovalComment<T extends { body: string }>(comment: T, censorUsernameInLogs: boolean): T {
+    return {
+      ...comment,
+      body: redactCurrentUserText(comment.body, { enabled: censorUsernameInLogs }),
+    };
+  }
+
  async function getExistingApproval(id: string) {
    const existing = await db
      .select()
@ -230,6 +232,7 @@ export function approvalService(db: Db) {

    listComments: async (approvalId: string) => {
      const existing = await getExistingApproval(approvalId);
+      const { censorUsernameInLogs } = await instanceSettings.getGeneral();
      return db
        .select()
        .from(approvalComments)
@ -240,7 +243,7 @@ export function approvalService(db: Db) {
          ),
        )
        .orderBy(asc(approvalComments.createdAt))
-        .then((comments) => comments.map(redactApprovalComment));
+        .then((comments) => comments.map((comment) => redactApprovalComment(comment, censorUsernameInLogs)));
    },

    addComment: async (
@ -249,7 +252,10 @@ export function approvalService(db: Db) {
      actor: { agentId?: string; userId?: string },
    ) => {
      const existing = await getExistingApproval(approvalId);
-      const redactedBody = redactCurrentUserText(body);
+      const currentUserRedactionOptions = {
+        enabled: (await instanceSettings.getGeneral()).censorUsernameInLogs,
+      };
+      const redactedBody = redactCurrentUserText(body, currentUserRedactionOptions);
      return db
        .insert(approvalComments)
        .values({
@ -260,7 +266,7 @@ export function approvalService(db: Db) {
          body: redactedBody,
        })
        .returning()
-        .then((rows) => redactApprovalComment(rows[0]));
+        .then((rows) => redactApprovalComment(rows[0], currentUserRedactionOptions.enabled));
    },
  };
 }