Comment 2 for bug 1685798
Revision history for this message
| Donagh McCabe (donagh-mccabe) wrote Re: Swift tempurl middleware reveals signatures in the logfiles | #2 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0f7b58d
(Get the code!)
Having had to debug customer reports that tempurl "does not work", I found it can be be useful to see exactly what they sent, vs what they thought they sent. So as debug aid, I suggest you have a way of switching this off with something like:
[tempurl]
log_
By only logging for specific accounts, you don't expose all users. You can advise the account owner to change their keys after the debug period is over.
[Even with logging, it can still be hard to debug because the proxy-logger URL-encodes before logging and this is often the area where signature-encoding is wrong to start with]