reverse-proxy icon indicating copy to clipboard operation
reverse-proxy copied to clipboard
verified publisher icon microsoft

Remove sensible data from Ilogger

Open kefran06 opened this issue 7 months ago • 1 comments

What should we add or change to make your life better?

Can you redacted query string when you log target url like this logging example Proxying to {targetUrl} {version} {versionPolicy} {isStreaming}

Right now, I can see some access_token provided in query string

Why is this important to you?

I don't want sensible data to be find in my logging provider

kefran06 avatar May 22 '25 13:05 kefran06

There's nothing built-in right now. We did change HttpClient and HttpClientFactory to redact query strings by default for .NET 9, we could consider doing the same with YARP.

https://github.com/dotnet/runtime/issues/74340 https://github.com/dotnet/runtime/pull/103769 UriRedactionHelper.cs

MihaZupan avatar May 23 '25 13:05 MihaZupan