Halaman utama Jelajahi Bantuan
Masuk
lqb
/
elasticsearch
cermin dari https://gitee.com/mirrors/elasticsearch.git
1
0
Fork 0
Berkas Masalah 0 Wiki
Jelajahi Sumber

Truncate SAML Response in trace log (#51237)

When not truncated, a long SAML response XML document can fill max
line length and mask the actual exception message that the trace
statement is meant to inform about.
The same XML Document is also printed in full on trace level in
SamlRequestHandler#parseSamlMessage() so there is no loss of
information
Ioannis Kakavas 5 tahun lalu
induk
ec9437832d
melakukan
d05f9f9a4b
1 mengubah file dengan 2 tambahan dan 1 penghapusan
Tampilan Split Tampilkan Statistik Diff
  1. 2 1
      x-pack/plugin/security/src/main/java/org/elasticsearch/xpack/security/authc/saml/SamlAuthenticator.java

+ 2 - 1
x-pack/plugin/security/src/main/java/org/elasticsearch/xpack/security/authc/saml/SamlAuthenticator.java
Tampilan Berkas 

@@ -68,7 +68,8 @@ class SamlAuthenticator extends SamlRequestHandler {
 
             try {
 
                 return authenticateResponse(root, token.getAllowedSamlRequestIds());
 
             } catch (ElasticsearchSecurityException e) {
 
-                logger.trace("Rejecting SAML response {} because {}", SamlUtils.toString(root), e.getMessage());
 
+                logger.trace("Rejecting SAML response [{}...] because {}", Strings.cleanTruncate(SamlUtils.toString(root), 512),
 
+                    e.getMessage());
 
                 throw e;
 
             }
 
         } else {