Open slingamn opened 3 years ago
Nobody would like passwords to "fly" free in the system, I do not support this solution myself :) Currently, I am logging everything to the file and I will definitely be looking for a solution that will return everything to stdout (everything will be in Docker and there I can easily redirect the output wherever I want)
Thank you very much for your attention and for your help today;)
Have a nice weekend!
cc @vertisan
Right now, auth-script can only log errors reported explicitly by the script (as part of the json response). It can't log arbitrary stderr from the process, and it won't log anything on success. (If the script exits with a nonzero exit code, you'll get an error logline announcing the code, but that's it.)
We may want to start capturing stderr here and logging it; the tradeoff is that this might cause passwords to be logged in plaintext.
A workaround is to use
logger
orsystemd-cat
to log output directly to the system journal from the script.