Add configuration hide-user-data-from-log to hide user data from server logs #877
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Codecov ReportAttention: Patch coverage is
Additional details and impacted files@@ Coverage Diff @@
## unstable #877 +/- ##
============================================
- Coverage 70.43% 70.42% -0.02%
============================================
Files 113 114 +1
Lines 61728 61647 -81
============================================
- Hits 43479 43413 -66
+ Misses 18249 18234 -15
|
Lo0oG
reviewed
Aug 8, 2024
Lo0oG
reviewed
Aug 8, 2024
madolson
reviewed
Aug 8, 2024
madolson
reviewed
Aug 8, 2024
madolson
reviewed
Aug 8, 2024
madolson
reviewed
Aug 8, 2024
|
In the client info we have two extra pieces of information, the |
madolson
reviewed
Aug 8, 2024
|
@valkey-io/core-team Overall would like a vote for this. In addition, some specific questions for this feature:
If we don't believe users should be logged, we should also hide them from the client list output that is also in the log. |
madolson
added
major-decision-pending
If Redis has already picked this name and the behavior is similar, I think this name is good (so users don't have to learn a new concept). Though from a quick look at the PR, we also use this config to decide whether to log the stack trace, which makes "user-data" a bit far fetched IMO - just a nit. |
hwware
reviewed
Aug 12, 2024
|
madolson
added
major-decision-approved
I'm aligned with this. Let's remove the name and username from the client output as well. |
madolson
reviewed
Aug 12, 2024
madolson
reviewed
Aug 12, 2024
naglera
commented
Aug 13, 2024
There was a problem hiding this comment.
When it comes to masking the client's name and username from the client output, should we apply it to all instances where client information is printed, or only to the cases where the server voluntarily reveals such details?
i.e. should client list and client info work normaly when feature is enabeld?
@hwware @madolson
hwware
reviewed
Aug 13, 2024
madolson
reviewed
Aug 13, 2024
hwware
reviewed
Aug 14, 2024
ranshid
reviewed
Aug 15, 2024
zuiderkwast
reviewed
Aug 15, 2024
|
@naglera I think a bunch of tests are failing because we changed the default value, which is breaking a bunch of log scans for tests. I think for testing we can default to having it on. |
Signed-off-by: naglera <[email protected]>
enjoy-binbin
changed the title
madolson
reviewed
Sep 2, 2024
Signed-off-by: Madelyn Olson <[email protected]>
madolson
approved these changes
Sep 2, 2024
madolson
added
the
run-extra-tests
madolson
reviewed
Sep 2, 2024
madolson
reviewed
Sep 2, 2024
Minor changes to wording Signed-off-by: Madelyn Olson <[email protected]>
madolson
changed the title
madolson
pushed a commit
that referenced
this pull request
Sep 3, 2024
…er logs (#877) Implement data masking for user data in server logs and diagnostic output. This change prevents potential exposure of confidential information, such as PII, and enhances privacy protection. It masks all command arguments, client names, and client usernames. Added a new hide-user-data-from-log configuration item, default yes. --------- Signed-off-by: Amit Nagler <[email protected]>
enjoy-binbin
added a commit
to enjoy-binbin/valkey
that referenced
this pull request
Sep 5, 2024
Minor cleanup, introduced in valkey-io#877. Signed-off-by: Binbin <[email protected]>
enjoy-binbin
added a commit
that referenced
this pull request
Sep 5, 2024
Minor cleanup, introduced in #877. Signed-off-by: Binbin <[email protected]>
lilpoozie2005
approved these changes
Sep 11, 2024
PingXie
pushed a commit
to PingXie/valkey
that referenced
this pull request
Sep 13, 2024
Minor cleanup, introduced in valkey-io#877. Signed-off-by: Binbin <[email protected]>
PingXie
pushed a commit
to PingXie/valkey
that referenced
this pull request
Sep 13, 2024
Minor cleanup, introduced in valkey-io#877. Signed-off-by: Binbin <[email protected]> Signed-off-by: Ping Xie <[email protected]>
PingXie
pushed a commit
to PingXie/valkey
that referenced
this pull request
Sep 14, 2024
…er logs (valkey-io#877) Implement data masking for user data in server logs and diagnostic output. This change prevents potential exposure of confidential information, such as PII, and enhances privacy protection. It masks all command arguments, client names, and client usernames. Added a new hide-user-data-from-log configuration item, default yes. --------- Signed-off-by: Amit Nagler <[email protected]> Signed-off-by: Ping Xie <[email protected]>
PingXie
pushed a commit
to PingXie/valkey
that referenced
this pull request
Sep 14, 2024
Minor cleanup, introduced in valkey-io#877. Signed-off-by: Binbin <[email protected]> Signed-off-by: Ping Xie <[email protected]>
PingXie
pushed a commit
to PingXie/valkey
that referenced
this pull request
Sep 14, 2024
…er logs (valkey-io#877) Implement data masking for user data in server logs and diagnostic output. This change prevents potential exposure of confidential information, such as PII, and enhances privacy protection. It masks all command arguments, client names, and client usernames. Added a new hide-user-data-from-log configuration item, default yes. --------- Signed-off-by: Amit Nagler <[email protected]> Signed-off-by: Ping Xie <[email protected]>
PingXie
pushed a commit
to PingXie/valkey
that referenced
this pull request
Sep 14, 2024
Minor cleanup, introduced in valkey-io#877. Signed-off-by: Binbin <[email protected]> Signed-off-by: Ping Xie <[email protected]>
PingXie
pushed a commit
to PingXie/valkey
that referenced
this pull request
Sep 14, 2024
…er logs (valkey-io#877) Implement data masking for user data in server logs and diagnostic output. This change prevents potential exposure of confidential information, such as PII, and enhances privacy protection. It masks all command arguments, client names, and client usernames. Added a new hide-user-data-from-log configuration item, default yes. --------- Signed-off-by: Amit Nagler <[email protected]> Signed-off-by: Ping Xie <[email protected]>
PingXie
pushed a commit
to PingXie/valkey
that referenced
this pull request
Sep 14, 2024
Minor cleanup, introduced in valkey-io#877. Signed-off-by: Binbin <[email protected]> Signed-off-by: Ping Xie <[email protected]>
enjoy-binbin
added a commit
to enjoy-binbin/valkey
that referenced
this pull request
Sep 14, 2024
Minor cleanup, introduced in valkey-io#877. Signed-off-by: Binbin <[email protected]>
PingXie
pushed a commit
to PingXie/valkey
that referenced
this pull request
Sep 14, 2024
Minor cleanup, introduced in valkey-io#877. Signed-off-by: Binbin <[email protected]> Signed-off-by: Ping Xie <[email protected]>
PingXie
pushed a commit
to PingXie/valkey
that referenced
this pull request
Sep 14, 2024
Minor cleanup, introduced in valkey-io#877. Signed-off-by: Binbin <[email protected]> Signed-off-by: Ping Xie <[email protected]>
PingXie
pushed a commit
that referenced
this pull request
Sep 15, 2024
Minor cleanup, introduced in #877. Signed-off-by: Binbin <[email protected]> Signed-off-by: Ping Xie <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Implement data masking for user data in server logs and diagnostic output. This change prevents potential exposure of confidential information, such as PII, and enhances privacy protection. It masks all command arguments, client names, and client usernames.
Added a new hide-user-data-from-log configuration item, default yes.