Closed danielHalan closed 9 years ago
Yeah this is indeed a potential security issue that we are aware off, see https://github.com/Particular/NServiceBus.Azure/issues/117, it is caused by the fact that the old msmq machine concept is used to represent the namespace concept in servicebus, yet the core is obviously not aware of it. We are changing the core to allow setup of client side routing rules, which maps logical addresses to physical addresses, and this will resolve this issue (among others). As a workaround though you could create a wrapper for the logging infrastructure which replaces or removes the secret information.
There is a log entry when sending a message that contains the whole endpoint path, which in ASB also contains the SharedAccessKey, guess this is performed in Core (where other transporters just have the server name) but would be good if could be overridden in ASB to remove the 'SharedAccessKey' value