krikkert/habitica
1
0
Fork 0
mirror of https://github.com/HabitRPG/habitica.git synced 2025-12-18 15:17:25 +01:00
Code Issues Packages Projects Releases Wiki Activity

remove sensitive info from logs

Browse Source
This commit is contained in:
Matteo Pagliazzi
2018-07-08 10:43:28 +02:00
parent 18ed0fe446
commit 8a4c4e10f1
1 changed files with 5 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
website/server/middlewares/errorHandler.js
View File

@@ -69,8 +69,11 @@ module.exports = function errorHandler (err, req, res, next) { // eslint-disable
logger.error(err, { logger.error(err, {
method: req.method, method: req.method,
originalUrl: req.originalUrl, originalUrl: req.originalUrl,
headers: omit(req.headers, ['x-api-key', 'cookie', 'password', 'confirmPassword']), // don't send sensitive information that only adds noise
body: req.body, // don't send sensitive information that only adds noise
headers: omit(req.headers, ['x-api-key', 'cookie', 'password', 'confirmPassword']),
body: omit(req.body, ['password', 'confirmPassword']),
httpCode: responseErr.httpCode, httpCode: responseErr.httpCode,
isHandledError: responseErr.httpCode < 500, isHandledError: responseErr.httpCode < 500,
}); });