Show injected headers in 'info' log level #110
Conversation
|
Have you tried verbose? I prefer not to use info in looping type scenarios. In the bigger picture, it may be a good idea to implement a sort of logging feature where each log statement has some sort of key and then let the level of all keys be configurable at run time. I should also document what each of the levels means because mentally I have pretty specific usage scenarios for each. And then audit the usages... |
|
Yes I did, but still plenty of unnecessary information is there. But it's not a big deal, there are not such frequent updates (btw one of the recent ones with merging jwt and oidc flows is very cool) so I can keep that in my fork, and prepare custom images just for us. |
|
Yeah glad the oidc features in jwt is helpful! The new single logout stuff is pretty cool as well. By looping in this context I mean there are n+1 due to the fact that there could be any number of injected headers (vs a log entry showing the summation of all injected headers after the loop has run). It’s a cool use-case though. For now build a custom image and I’ll come up with a more comprehensive solution that will allow fine-grain control across the board for all logging statements. |
|
I don’t think we can put injected headers into info due to sensitive headers as well (I had some pretty strict criteria about the level that would allow any kind of sensitive data get logged. I would have to review to see if it was debug or verbose). It looks like there are some other features/fixes in here we should incorporate. Want to break those out into a separate PR? |
By default
debugloglevel is showing a lot of secret content, but we would like to get injected headers values for audit purposes.