[SERVER-42874] redactClientLogData also redacts $comment field Created: 19/Aug/19 Updated: 28/Apr/23 |
|
| Status: | Backlog |
| Project: | Core Server |
| Component/s: | None |
| Affects Version/s: | None |
| Fix Version/s: | None |
| Type: | Improvement | Priority: | Major - P3 |
| Reporter: | Miguel Angel Nieto | Assignee: | Backlog - Security Team |
| Resolution: | Unresolved | Votes: | 0 |
| Labels: | move-sa, redaction | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Assigned Teams: |
Server Security
|
| Participants: | |
| Case: | (copied to CRM) |
| Description |
|
By default, redactClientLogData also redacts $comment field. This is a field usually used for debugging from the application, for example to find which part of the application executed the query and some other metadata that could be useful. It would be helpful to add a parameter to redactClientLogData so it ignores the $comment field. With the current implementation, users cannot really use $comment on servers that need sensitive data protection. |