openstack/horizon
Code Issues Proposed changes

operation_log: Mask more password fields by default

Browse Source 
Change-Id: I69283a2b692d1fca93aad1d5ed26a29de4e0e4a9
Closes-Bug: #1744609
This commit is contained in:
Akihiro Motoki 2018-01-22 09:20:16 +09:00
parent 439c3e578d
commit 1941d34e5c
1 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
horizon/middleware/operation_log.py
View File

@ -67,8 +67,10 @@ class OperationLogMiddleware(object):
" [%(request_scheme)s] [%(referer_url)s] [%(request_url)s]"
" [%(message)s] [%(method)s] [%(http_status)s] [%(param)s]")
_default_ignored_urls = ['/js/', '/static/', '^/api/']
_default_mask_fields = ['password', 'current_password',
'new_password', 'confirm_password']
self.target_methods = [x for x in _methods if x in _available_methods]
self.mask_fields = _log_option.get("mask_fields", ['password'])
self.mask_fields = _log_option.get("mask_fields", _default_mask_fields)
self.format = _log_option.get("format", self._default_format)
self._logger = logging.getLogger('horizon.operation_log')