Add 'log-requests' option to disable request logging #199
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Luzifer
approved these changes
Oct 26, 2024
Luzifer
changed the title
|
Thanks for the addition. In my case anonymization of IPs is done in another way but for other setups that's a good way to prevent logging PII (and to keep log-spam low for really big instances)… |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Provide a new command line switch
--log-requeststhat controls weather or not requests to the http handler are logged. I think this is necessary to preventthe application logs from being used as a potential denial of service vector.... I read the log wrong. To prevent the privacy implication of associating IP's with secret retrieval.By default
--log-requests=trueand the existing behaviour is maintained. ots will continue to log requests. An administrator may opt in and disable request logging by passing--log-requests=falsetoots.Other logging remains unaffected.