You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@camel.apache.org by Claus Ibsen <cl...@gmail.com> on 2020/10/01 04:50:57 UTC
Re: Masking endpoint parameters in logs
Hi
You cannot mask the sftp path part. Camel only masks sensitive data
for credentials like username, passwords etc.
If you want to avoid this, then you can "patch the source code" by
adding mask = true in the source code and rebuild the component.
Or extend the component as sftp2 and set the mask = true.
You are the first to talk about masking the directory folder name for sftp.
On Thu, Oct 1, 2020 at 12:42 AM Anthony Wu <an...@toasttab.com> wrote:
>
> Hello Camel users,
>
> In researching options to mask i.e. the SFTP path (considered sensitive
> information) in all logs while retaining other information in the log line,
> I stumbled upon the recently completed ticket
> https://issues.apache.org/jira/browse/CAMEL-14844.
>
> Unfortunately, I can't find where in the documentation this can be enabled
> to test if this would suit the desired purpose. How can disabling endpoint
> logging be set, or (better yet) is there a way to configure the existing
> formatters to mask this? It doesn't look like the log masking formatter or
> the exchange formatter would be able to override this and URISupport seems
> to have a fixed set of fields it masks.
>
> Best,
> Anthony
--
Claus Ibsen
-----------------
http://davsclaus.com @davsclaus
Camel in Action 2: https://www.manning.com/ibsen2
Re: Masking endpoint parameters in logs
Posted by Anthony Wu <an...@toasttab.com>.
Thanks for the clarification Claus. I was curious what flag/parameter the
Jira ticket implemented but it sounds that's not accessible without
recompiling the source code, which we'd like to avoid. It is a little weird
but our scenario is just masking the whole "sftp://" path from i.e. route
startup/shutdown/exceptions on not being able to access the directory...
perhaps best is just handling this on a lower level; i.e. log4j.
Best,
Anthony
On Thu, Oct 1, 2020 at 12:51 AM Claus Ibsen <cl...@gmail.com> wrote:
> Hi
>
> You cannot mask the sftp path part. Camel only masks sensitive data
> for credentials like username, passwords etc.
> If you want to avoid this, then you can "patch the source code" by
> adding mask = true in the source code and rebuild the component.
> Or extend the component as sftp2 and set the mask = true.
>
> You are the first to talk about masking the directory folder name for sftp.
>
>
> On Thu, Oct 1, 2020 at 12:42 AM Anthony Wu <an...@toasttab.com>
> wrote:
> >
> > Hello Camel users,
> >
> > In researching options to mask i.e. the SFTP path (considered sensitive
> > information) in all logs while retaining other information in the log
> line,
> > I stumbled upon the recently completed ticket
> > https://issues.apache.org/jira/browse/CAMEL-14844.
> >
> > Unfortunately, I can't find where in the documentation this can be
> enabled
> > to test if this would suit the desired purpose. How can disabling
> endpoint
> > logging be set, or (better yet) is there a way to configure the existing
> > formatters to mask this? It doesn't look like the log masking formatter
> or
> > the exchange formatter would be able to override this and URISupport
> seems
> > to have a fixed set of fields it masks.
> >
> > Best,
> > Anthony
>
>
>
> --
> Claus Ibsen
> -----------------
> http://davsclaus.com @davsclaus
> Camel in Action 2: https://www.manning.com/ibsen2
>
>