Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Only auth _errors_ should log at error level #9325

Merged
merged 3 commits into from
Feb 15, 2021
Merged

Only auth _errors_ should log at error level #9325

merged 3 commits into from
Feb 15, 2021

Conversation

ivankelly
Copy link
Contributor

An authentication failure should not log at error level, as it depends
on the credentials that the client provides, which may well be wrong.

An authentication/authorization error, where it cannot be decided if
credentials are valid or not, is an error that needs operator
attention and therefore should be logged at error level.

PLSR-1470: Only auth _errors_ should log at error level
cbafc3a 
An authentication failure should not log at error level, as it depends
on the credentials that the client provides, which may well be wrong.

An authentication/authorization error, where it cannot be decided if
credentials are valid or not, is an error that needs operator
attention and therefore should be logged at error level.
@ivankelly ivankelly added the type/bug The PR fixed a bug or issue reported a bug label Jan 26, 2021
@ivankelly ivankelly self-assigned this Jan 26, 2021
@merlimat merlimat changed the title PLSR-1470: Only auth _errors_ should log at error level Only auth _errors_ should log at error level Jan 26, 2021
@merlimat merlimat added this to the 2.8.0 milestone Jan 26, 2021
@wolfstudy wolfstudy self-requested a review January 28, 2021 05:37
@wolfstudy
Copy link
Member

/pulsarbot run-failure-checks

1 similar comment
@sijie
Copy link
Member

sijie commented Feb 1, 2021

/pulsarbot run-failure-checks

@sijie sijie merged commit fd9875c into apache:master Feb 15, 2021
michaeljmarshall pushed a commit that referenced this pull request Dec 10, 2021
@ivankelly @michaeljmarshall
PLSR-1470: Only auth _errors_ should log at error level (#9325)
8e97d58 
An authentication failure should not log at error level, as it depends
on the credentials that the client provides, which may well be wrong.

An authentication/authorization error, where it cannot be decided if
credentials are valid or not, is an error that needs operator
attention and therefore should be logged at error level.

Co-authored-by: Ivan Kelly <ikelly@splunk.com>
Co-authored-by: Matteo Merli <mmerli@splunk.com>
Co-authored-by: Sijie Guo <sijie@apache.org>
(cherry picked from commit fd9875c)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@merlimat merlimat merlimat approved these changes

@sijie sijie sijie approved these changes

@wolfstudy wolfstudy wolfstudy approved these changes

@aahmed-se aahmed-se Awaiting requested review from aahmed-se

Assignees

@ivankelly ivankelly

Labels
cherry-picked/branch-2.7 Archived: 2.7 is end of life release/2.7.4 type/bug The PR fixed a bug or issue reported a bug
Projects
None yet
Milestone
2.8.0
Development

Successfully merging this pull request may close these issues.
5 participants
@ivankelly @wolfstudy @sijie @merlimat @michaeljmarshall