Uploaded image for project: 'Red Hat 3scale API Management'
  1. Red Hat 3scale API Management
  2. THREESCALE-2985

Container/pod logs expose potentially sensitive information

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • Major
    • None
    • 2.6 ER1
    • System
    • Not Started
    • Not Started
    • Not Started
    • Not Started
    • Not Started
    • Not Started
    • 3scale 2019-07-29

    Description

      Environment variables: RAILS_LOG_LEVEL: debug
      When a new Account is created, there are few types of logs of this action.
      One of them is showing potentially sensitive information as Mark mentioned in Audit logs issue.
      In this case user_key is visible even if it is filtered out in audit logs.

      Attachments

        Activity

          People

            Unassigned Unassigned
            jsmolar Jakub Smolár
            Carlos Ribeiro Carlos Ribeiro (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: