Influxdb: Debug level logging dumps user session key
In a number of places in the codebase we print the users session key in debug level logs.
https://github.com/influxdata/influxdb/blob/master/http/check_service.go#L237
This happens in a number of different places. Ideally, we should not dump the HTTP request as is done there. At the very least, we should be scrubbing any potentially sensitive data.
desa
All 4 comments
@jademcgough and @desa feels like we could just drop these debug logs. Is there some background on why they were added originally?
jsteenb2
on 25 Sep 2019
Seems like we could drop them to me
On Tue, Sep 24, 2019 at 8:18 PM Johnny Steenbergen notifications@github.com
wrote:
@jademcgough https://github.com/jademcgough and @desa
https://github.com/desa feels like we could just drop these debug logs.
Is there some background on why they were added originally?—
You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub
https://github.com/influxdata/influxdb/issues/15258?email_source=notifications&email_token=AALIXI5DK3Z32WQJHEG5UKDQLKU6VA5CNFSM4I2D5II2YY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGOD7QFXIA#issuecomment-534797216,
or mute the thread
https://github.com/notifications/unsubscribe-auth/AALIXI3HU743GWZ25QUOTNLQLKU6VANCNFSM4I2D5IIQ
.
desa
on 25 Sep 2019
I think the idea was to provide a paper trail for requests / user actions.
If we do want to filter out sensitive data:
- headers contain auth tokens
- so do responses from auth creation
- notification endpoints are created with security keys
- /onboarding returns a token
/users/:id/passwordis logging the password
If no one cares, I'm in favor of just removing the http debug logs.
immykins
on 25 Sep 2019
Good points. They can definitely be useful for debugging. I think we should
just scrub the logs of sensitive data.
On Tue, Sep 24, 2019 at 9:37 PM Jade McGough notifications@github.com
wrote:
I think the idea was to provide a paper trail for requests / user actions.
If we do want to filter out sensitive data:
- headers contain auth tokens
- so do responses from auth creation
- notification endpoints are created with security keys
- /onboarding returns a token
- /users/:id/password is logging the password
If no one cares, we can just drop the debug logs in the http layer.
—
You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub
https://github.com/influxdata/influxdb/issues/15258?email_source=notifications&email_token=AALIXI6DARGAYZDT2U57LXLQLK6FLA5CNFSM4I2D5II2YY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGOD7QJVKA#issuecomment-534813352,
or mute the thread
https://github.com/notifications/unsubscribe-auth/AALIXI5VDYXLTQPXK67FVADQLK6FLANCNFSM4I2D5IIQ
.
desa
on 25 Sep 2019
Related issues
756445638
·
3Comments
binary0111
·
3Comments
acarapetis
·
3Comments
bigKS
·
3Comments
davidgubler
·
3Comments