search

mozilla-iam / cis

Home of Mozilla IAM change integration service repository.
Mozilla Public License 2.0
10 stars 22 forks source link

cis_ldap_publisher filling Auth0 logs with "Client Credentials for Access Token" #126

Open gene1wood opened 6 years ago

gene1wood commented 6 years ago

It's difficult to read the logs now as it's filled "Client Credentials for Access Token" records from cis_ldap_publisher

An example payload of these logs is

{
  "date": "2018-08-24T11:48:16.111Z",
  "type": "seccft",
  "description": "",
  "connection": null,
  "connection_id": "",
  "client_id": "sFLbgcMH9W3NZwAPw2MMeL3pCRlfwKit",
  "client_name": "cis_ldap_publisher",
  "ip": "54.187.55.234",
  "user_agent": null,
  "hostname": "auth-dev.mozilla.auth0.com",
  "user_id": "",
  "user_name": "",
  "audience": "https://person-api.sso.allizom.org",
  "scope": null
}

Is this expected? If so is there any way to regain the ability to look in logs and see login attempts and failures without these records obscuring them?

gdestuynder commented 5 years ago

this code is now deprecated and should eventually be disabled (not now, but when cis v2 code is complete)