Do not audit values for removed/revoked API keys #10272

joelverhagen · 2024-11-18T21:46:32Z

Today we audit the hashed API key value when a credential is deleted/revoked. This is not very useful (it is hashed) and it could trigger credential scanner in our audit logs at some point. I would like to remove it so our audit logs don't have this useless value.

Vaguely related to #10212.

Do not audit values for removed/revoked API keys

b6fce69

joelverhagen requested a review from a team as a code owner November 18, 2024 21:46

ryuyu previously approved these changes Nov 18, 2024

View reviewed changes

Fix UTs

d35c084

joelverhagen dismissed ryuyu’s stale review via d35c084 November 18, 2024 22:13

ryuyu approved these changes Nov 18, 2024

View reviewed changes

joelverhagen merged commit 5be598a into dev Nov 18, 2024
2 checks passed

joelverhagen deleted the jver-clean branch November 18, 2024 22:27

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Do not audit values for removed/revoked API keys #10272

Do not audit values for removed/revoked API keys #10272

joelverhagen commented Nov 18, 2024

Do not audit values for removed/revoked API keys #10272

Do not audit values for removed/revoked API keys #10272

Conversation

joelverhagen commented Nov 18, 2024