Uploaded image for project: 'Identity Gateway'
  1. Identity Gateway
  2. OPENIG-3917

Provide ways to mask header and attribute values captured by CaptureDecorator

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 5.0.0, 5.5.0, 5.5.1, 6.0.0, 6.1.0, 6.5.0, 6.5.1, 7.0.0
    • Fix Version/s: 7.0.0
    • Component/s: Core
    • Environment:
      IG with a capture decorator enabled in a route
    • Sprint:
      2019.16 - IG / Microservices, 2019.17 - IG / Microservices
    • Story Points:
      4

      Description

      When using the capture decorator in a route, there are times when header or attribute values should be masked to avoid disclosing information, such as token values or passwords.

      There is a way to do this in the logging framework but this involves post-processing of the entire log message which is not as efficient as doing it on specific items before they are added to the log message - https://logback.qos.ch/manual/layouts.html#replace

      Provide a configuration item to allow specific header and/or attribute values to be masked before they are logged by a capture decorator based on the name of the item.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                markdr Mark de Reeper
                Reporter:
                markdr Mark de Reeper
              • Votes:
                0 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: