From 05dc11ee35d0467ddf0fee1e7d98cd0605897278 Mon Sep 17 00:00:00 2001 From: Slava Koyfman Date: Sun, 22 Dec 2024 09:44:28 +0200 Subject: [PATCH] Disable dumping of headers on trace Some headers (e.g.: Authorization) contains sensitive information which should not be logged. --- source/common/http/filter_manager.h | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/source/common/http/filter_manager.h b/source/common/http/filter_manager.h index 9fc0c99b0359..90cd44f0ec71 100644 --- a/source/common/http/filter_manager.h +++ b/source/common/http/filter_manager.h @@ -679,7 +679,8 @@ class FilterManager : public ScopeTrackedObject, const char* spaces = spacesForLevel(indent_level); os << spaces << "FilterManager " << this << DUMP_MEMBER(state_.has_1xx_headers_) << "\n"; - DUMP_DETAILS(filter_manager_callbacks_.requestHeaders()); + // Disabled to avoid dumping sensitive information (such as AUTHORIZATION header) + // DUMP_DETAILS(filter_manager_callbacks_.requestHeaders()); DUMP_DETAILS(filter_manager_callbacks_.requestTrailers()); DUMP_DETAILS(filter_manager_callbacks_.responseHeaders()); DUMP_DETAILS(filter_manager_callbacks_.responseTrailers());