From 0ed420f81f62c2e5e75d140de038ab4b39f3a973 Mon Sep 17 00:00:00 2001
From: firest <enlanubo@gmail.com>
Date: Mon, 12 Jun 2023 18:01:02 +0800
Subject: [PATCH 1/2] fix: obfuscated the value of JWT

---
 apps/emqx_utils/src/emqx_utils.erl | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/apps/emqx_utils/src/emqx_utils.erl b/apps/emqx_utils/src/emqx_utils.erl
index bb69a9e56..6cf85fb5d 100644
--- a/apps/emqx_utils/src/emqx_utils.erl
+++ b/apps/emqx_utils/src/emqx_utils.erl
@@ -624,6 +624,9 @@ is_sensitive_key(<<"security_token">>) -> true;
 is_sensitive_key(token) -> true;
 is_sensitive_key("token") -> true;
 is_sensitive_key(<<"token">>) -> true;
+is_sensitive_key(jwt) -> true;
+is_sensitive_key("jwt") -> true;
+is_sensitive_key(<<"jwt">>) -> true;
 is_sensitive_key(_) -> false.
 
 redact(Term) ->

From 661893cae5cf7349a21a7463014db8864f50b2cb Mon Sep 17 00:00:00 2001
From: firest <enlanubo@gmail.com>
Date: Mon, 12 Jun 2023 15:26:11 +0800
Subject: [PATCH 2/2] chore: update changes

---
 changes/ce/perf-11019.en.md | 1 +
 1 file changed, 1 insertion(+)
 create mode 100644 changes/ce/perf-11019.en.md

diff --git a/changes/ce/perf-11019.en.md b/changes/ce/perf-11019.en.md
new file mode 100644
index 000000000..dcca33b35
--- /dev/null
+++ b/changes/ce/perf-11019.en.md
@@ -0,0 +1 @@
+Improve log security for JWT, now it will be obfuscated before print.