New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Log job arguments at debug level #22091
Conversation
Thanks for the pull request, and welcome! The Rails team is excited to review your changes, and you should hear from @arthurnn (or someone else) soon. If any changes to this PR are deemed necessary, please add them as extra commits. This ensures that the reviewer can see what has changed since they last reviewed the code. Due to the way GitHub handles out-of-date commits, this should also make it reasonably obvious what issues have or haven't been addressed. Large or tricky changes may require several passes of review and changes. Please see the contribution instructions for more information. |
On a production system logging all parameters at info level is an excessive amount of data. Also jobs might contain sensitive information which does not want to be logged. See: https://github.com/plataformatec/devise#password-reset-tokens-and-rails-logs This continues to log job status updates at info level, but logs the job parameters at debug level.
Looks good to me. r? @jeremy WDYT? |
Is there anything else that is needed for this pull request? Thanks. |
👍 |
I just submitted a similar pull request, but with a different approach: #23031 In my opinion, sensitive information should not be passed in as a job argument in the first place, but in the case where you don't have easy control over that (such as with the Devise What do you think? |
I like the idea of making it configurable. I think the default should be to not log, as I prefer security by default and most projects contain sensitive information. |
Is there anything I need to do to get this merged? Thanks. |
No reply in 8 months so closing :( |
On a production system logging all parameters at info level is an
excessive amount of data. Also jobs might contain sensitive information
which does not want to be logged. See:
https://github.com/plataformatec/devise#password-reset-tokens-and-rails-logs
This continues to log job status updates at info level, but logs the job
parameters at debug level.