fix(core): Censor OAuth1 getAccessToken HTTP logs [PDE-5390]

zapier / zapier-platform

The SDK for you to build an integration on Zapier

https://platform.zapier.com

Other

344 stars 188 forks source link

fix(core): Censor OAuth1 getAccessToken HTTP logs [PDE-5390] #864

Closed kreddlear closed 1 month ago

kreddlear commented 1 month ago

When invoking methods like authentication.oauth1Config.getAccessToken or authentication.oauth2Config.refreshAccessToken, some servers return querystring formatted data containing secrets. We should censor those properly in HTTP logs.