You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Took this from @adorton-adobe since I'm doing a bunch of other fixes and it's easy to knock this one off as well.
Note: since this bug was introduced, we added a second password (for the upstream proxy), and we had the same problem with logging of that password. I will fix both instances.
Applies both to the certificate password and to the proxy password.
The simplest fix for this, since it just needs to fix logging, is to re-implement the Debug trait on the relevant settings structures (rather than using the derived trait). If we weren't serializing these passwords to and from the config file on disk, it might be worth using a crate such as secrecy. But that is overkill for this problem.
Fixesadobe/frl-online-proxy#29.
Description
When running at log level
debug
, the SSL cert and proxy passwords are printed. We should not print these items to the log.Steps to reproduce
debug
start
modeExpected behavior
Sensitive fields should be omitted or redacted (e.g. replace contents with
xxxx
).Environment
The text was updated successfully, but these errors were encountered: