Bug 1925081

Summary: The user token in kibana logs for logging.quiet: false
Product: OpenShift Container Platform Reporter: Anping Li <anli>
Component: LoggingAssignee: ewolinet
Status: CLOSED ERRATA QA Contact: Anping Li <anli>
Severity: high Docs Contact: Rolfe Dlugy-Hegwer <rdlugyhe>
Priority: high    
Version: 4.5CC: aos-bugs, bjarolim, ewolinet, jnordell, openshift-bugs-escalate, vimalkum
Target Milestone: ---   
Target Release: 4.7.0   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard: logging-exploration
Fixed In Version: Doc Type: Bug Fix
Doc Text:
* Previously, the Kibana log level was increased not to suppress instructions to delete indices that failed to migrate, which also caused the display of GET requests at the INFO level that contained the Kibana user's email address and OAuth token. The current release fixes this issue by masking these fields, so the Kibana logs do not display them. (link:https://bugzilla.redhat.com/show_bug.cgi?id=1925081[*BZ#1925081*])
 Story Points: ---
Clone Of: Environment:
Last Closed: 2021-02-24 11:22:33 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1925627    

Comment 1 ewolinet 2021-02-04 19:37:59 UTC 
for some reason the bot is unable to link this to the PR that fixes this...

https://github.com/openshift/origin-aggregated-logging/pull/2056
Comment 3 Anping Li 2021-02-08 14:18:22 UTC 
Verified on elasticsearch-operator.5.0.0-44
"url": "https://access.redhat.com/containers/#/registry.access.redhat.com/openshift-logging/kibana6-rhel8/images/v5.0.0-21",
Comment 8 errata-xmlrpc 2021-02-24 11:22:33 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Errata Advisory for Openshift Logging 5.0.0), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2021:0652