[jira] [Resolved] (CXF-8099) Hiding sensitive information in request and response logs via configuration

classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view
|

[jira] [Resolved] (CXF-8099) Hiding sensitive information in request and response logs via configuration

Andrei Shakirin (Jira)

     [ https://issues.apache.org/jira/browse/CXF-8099?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Andrei Shakirin resolved CXF-8099.
----------------------------------
    Fix Version/s: 3.4.0
       Resolution: Fixed

> Hiding sensitive information in request and response logs via configuration
> ---------------------------------------------------------------------------
>
>                 Key: CXF-8099
>                 URL: https://issues.apache.org/jira/browse/CXF-8099
>             Project: CXF
>          Issue Type: Improvement
>          Components: logging
>    Affects Versions: 3.0.4
>            Reporter: K G N Nisansala
>            Assignee: Andrei Shakirin
>            Priority: Major
>             Fix For: 3.4.0
>
>
> When request hitting the cxf-logging enabled system. It logged all the details in request in plain text,. If the request body contains sensitive data like passwords, imi numbers and sms messages, all details logged, same applied to response as well. With this improvement we can hide it based on the configured keys.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)