The audit log captures actions taken by users in the FusionAuth admin application. There were cases when sensitive information could be included in forms, and subsequently logged to the audit log. Form fields that can contain sensitive information now have their values masked when written to the audit log.
Mask potentially sensitive values when writing to the audit log in the admin UI
Description
Ensure we are masking or removing sensitive information when writing to the audit log.
Related
Community guidelines
All issues filed in this repository must abide by the FusionAuth community guidelines.
Release notes
The audit log captures actions taken by users in the FusionAuth admin application. There were cases when sensitive information could be included in forms, and subsequently logged to the audit log. Form fields that can contain sensitive information now have their values masked when written to the audit log.