Merge pull request #11019 from lafirest/fix/dua_konservi_sentema

fix: obfuscated the value of JWT
2023-06-12 18:09:58 +08:00 · 2023-06-12 18:09:58 +08:00 · e78b7c5842
parent 85d787f561 661893cae5
commit e78b7c5842
2 changed files with 4 additions and 0 deletions
--- a/apps/emqx_utils/src/emqx_utils.erl
+++ b/apps/emqx_utils/src/emqx_utils.erl
@ -624,6 +624,9 @@ is_sensitive_key(<<"security_token">>) -> true;
 is_sensitive_key(token) -> true;
 is_sensitive_key("token") -> true;
 is_sensitive_key(<<"token">>) -> true;
+is_sensitive_key(jwt) -> true;
+is_sensitive_key("jwt") -> true;
+is_sensitive_key(<<"jwt">>) -> true;
 is_sensitive_key(_) -> false.

 redact(Term) ->
--- a/changes/ce/perf-11019.en.md
+++ b/changes/ce/perf-11019.en.md
@ -0,0 +1 @@
+Improve log security for JWT, now it will be obfuscated before print.
				`@ -0,0 +1 @@`
				`Improve log security for JWT, now it will be obfuscated before print.`