Bug 1943680

Summary: The user token in kibana logs for logging.quiet: false
Product: OpenShift Container Platform Reporter: OpenShift BugZilla Robot <openshift-bugzilla-robot>
Component: LoggingAssignee: ewolinet
Status: CLOSED ERRATA QA Contact: Kabir Bharti <kbharti>
Severity: high Docs Contact:
Priority: high    
Version: 4.5CC: aos-bugs, bjarolim, ewolinet, gkarager, jnordell, openshift-bugs-escalate
Target Milestone: ---   
Target Release: 4.5.z   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: No Doc Update
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2021-04-28 14:15:57 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1925627    
Bug Blocks:    
Attachments:
Description Flags
Kibana token and email censor logs none

Comment 2 Anping Li 2021-04-09 10:56:01 UTC 
The fix is not in elasticsearch-operator.4.5.0-202104011927.p0, waiting the next build.
Comment 5 Kabir Bharti 2021-04-13 21:09:03 UTC 
Created attachment 1771702 [details]
Kibana token and email censor logs
Comment 6 Kabir Bharti 2021-04-13 21:12:45 UTC 
Verified the fix for this bz on elasticsearch-operator.4.5.0-202104100246.p0.

Token and e-mail are now in censored format in Kibana logs.
"x-forwarded-email":"XXXXXXXXXXXXXXXXXXXXXXXX"
"x-forwarded-access-token":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"

Complete logs attached.
Comment 9 errata-xmlrpc 2021-04-28 14:15:57 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (OpenShift Container Platform 4.5.38 extras update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2021:1303