add log for auth params both in header and params

TencentBlueKing · Nov 1, 2023 · 3361c01 · 3361c01
1 parent d9ab3e7
commit 3361c01
Showing 1 changed file with 4 additions and 0 deletions.
diff --git a/src/apisix/plugins/bk-delete-sensitive.lua b/src/apisix/plugins/bk-delete-sensitive.lua
@@ -100,6 +100,10 @@ local function delete_sensitive_params(ctx, sensitive_keys, unfiltered_sensitive
     end
 
     if ctx.var.auth_params_location == "header" and (query_changed or form_changed or body_changed) then
+        core.log.warn(
+            "auth params exist in both header X-Bkapi-Authorization and request parameters, request_id: " ..
+                ctx.var.bk_request_id
+        )
         -- 记录认证参数位置，便于统计哪些请求将认证参数放到请求参数，推动优化
         ctx.var.auth_params_location = "header_and_params"
     end