Password displayed in Log. How to avoid that without encrypt/decrypt
Hi , We are using REST API to login into an another application and get data from there using REST API calls only. So we are having custom login page and getting username and password and calling Login api . We have published the app in cloud . Now When we login from cloud app we could able to see this rest call request in the logs ( We have enabled the log level as trace ) . How we can avoid to show that password information in the logs. is there any configuration or logic i should implement.
No, when the log level is set to trace it just will show all the traffic including the credentials used to access that service. That's why there are security settings on who is able to see the logs. If you can not or will not trust that person I think you have other problems.