X-Git-Url: https://git.arvados.org/arvados.git/blobdiff_plain/53ce9b61336c5385eb2250267efa69613b5eaec7..3fa0a5500d5b58b5d0b9ea940dac85be2da079ec:/services/api/config/initializers/lograge.rb diff --git a/services/api/config/initializers/lograge.rb b/services/api/config/initializers/lograge.rb index db9b2255c2..9b422462b1 100644 --- a/services/api/config/initializers/lograge.rb +++ b/services/api/config/initializers/lograge.rb @@ -13,6 +13,21 @@ Server::Application.configure do client_ipaddr: event.payload[:client_ipaddr], client_auth: event.payload[:client_auth], } + + # Lograge adds exceptions not being rescued to event.payload, but we're + # catching all errors on ApplicationController so we look for backtraces + # elsewhere. + if !Thread.current[:backtrace].nil? + payload.merge!( + { + exception: Thread.current[:exception], + exception_backtrace: Thread.current[:backtrace], + } + ) + Thread.current[:exception] = nil + Thread.current[:backtrace] = nil + end + exceptions = %w(controller action format id) params = event.payload[:params].except(*exceptions) @@ -27,9 +42,19 @@ Server::Application.configure do end end + # Redact new_user_token param in /arvados/v1/users/merge + # request. Log the auth UUID instead, if the token exists. + if params['new_user_token'].is_a? String + params['new_user_token_uuid'] = + ApiClientAuthorization. + where('api_token = ?', params['new_user_token']). + first.andand.uuid + params['new_user_token'] = '[...]' + end + params_s = SafeJSON.dump(params) - if params_s.length > Rails.configuration.max_request_log_params_size - payload[:params_truncated] = params_s[0..Rails.configuration.max_request_log_params_size] + "[...]" + if params_s.length > Rails.configuration.SystemLogs["MaxRequestLogParamsSize"] + payload[:params_truncated] = params_s[0..Rails.configuration.SystemLogs["MaxRequestLogParamsSize"]] + "[...]" else payload[:params] = params end