From 1947481fb0afad82b88db267e580e01fdfccc411 Mon Sep 17 00:00:00 2001 From: antonfirsov Date: Thu, 28 Nov 2024 18:24:24 +0100 Subject: [PATCH 1/2] document that fragment is also being redacted --- .../networking/9.0/query-redaction-events.md | 8 ++++---- .../compatibility/networking/9.0/query-redaction-logs.md | 8 ++++---- 2 files changed, 8 insertions(+), 8 deletions(-) diff --git a/docs/core/compatibility/networking/9.0/query-redaction-events.md b/docs/core/compatibility/networking/9.0/query-redaction-events.md index 416e58dec1b00..5579452ca0887 100644 --- a/docs/core/compatibility/networking/9.0/query-redaction-events.md +++ b/docs/core/compatibility/networking/9.0/query-redaction-events.md @@ -5,9 +5,9 @@ ms.date: 11/5/2024 ai-usage: ai-assisted --- -# URI query redaction in HttpClient EventSource events +# URI query and fragment redaction in HttpClient EventSource events -In .NET 9, the default behavior of events emitted by and (`EventSource` name: `System.Net.Http`) has been modified to scrub query strings. This change enhances privacy by preventing the logging of potentially sensitive information contained in query strings. If necessary, you can override this behavior. +In .NET 9, the default behavior of events emitted by and (`EventSource` name: `System.Net.Http`) has been modified to scrub the query and the fragment part of the Uri. This change enhances privacy by preventing the logging of potentially sensitive information contained in query strings while keeping the performance costs of the redaction minimal. If necessary, you can override this behavior. ## Version introduced @@ -19,7 +19,7 @@ Previously, events emitted by `HttpClient` and `SocketsHttpHandler` included que ## New behavior -With the change in [dotnet/runtime#104741](https://github.com/dotnet/runtime/pull/104741), query strings are replaced by a `*` character in `HttpClient` and `SocketsHttpHandler` events, by default. This change affects specific events and parameters such as `pathAndQuery` in `RequestStart` and `redirectUri` in `Redirect`. +With the change in [dotnet/runtime#104741](https://github.com/dotnet/runtime/pull/104741), the query and the fragment part by a `*` character in `HttpClient` and `SocketsHttpHandler` events, by default. This change affects specific events and parameters such as `pathAndQuery` in `RequestStart` and `redirectUri` in `Redirect`. ## Type of breaking change @@ -27,7 +27,7 @@ This change is a [behavioral change](../../categories.md#behavioral-change). ## Reason for change -The primary reason for this change was to enhance privacy by reducing the risk of sensitive information being logged inadvertently. Query strings often contain sensitive data, and redacting them from logs by default helps protect this information. +The primary reason for this change was to enhance privacy by reducing the risk of sensitive information being logged inadvertently. Query strings often contain sensitive data, and redacting them from logs by default helps protect this information. The fragment part is being scrubbed to keep the implementation simple and efficient. ## Recommended action diff --git a/docs/core/compatibility/networking/9.0/query-redaction-logs.md b/docs/core/compatibility/networking/9.0/query-redaction-logs.md index 2113fc1ee17b0..d39253fe151a0 100644 --- a/docs/core/compatibility/networking/9.0/query-redaction-logs.md +++ b/docs/core/compatibility/networking/9.0/query-redaction-logs.md @@ -5,9 +5,9 @@ ms.date: 11/5/2024 ai-usage: ai-assisted --- -# URI query redaction in IHttpClientFactory logs +# URI query and fragment redaction in IHttpClientFactory logs -In .NET 9, the default implementation of has been modified to scrub query strings when logging URI information. This change enhances privacy by preventing the logging of potentially sensitive information contained in query strings. For scenarios where logging query strings is necessary and deemed safe, you can override this behavior. +In .NET 9, the default implementation of has been modified to scrub query strings when logging URI information. This change enhances privacy by preventing the logging of potentially sensitive information contained in query strings while keeping the performance costs of the redaction minimal. For scenarios where logging query strings is necessary and deemed safe, you can override this behavior. ## Version introduced @@ -19,7 +19,7 @@ Previously, the default implementation of `IHttpClientFactory` logging included ## New behavior -The messages passed to now have query strings replaced by a `*` character. +The messages passed to now have the query and the fragment part replaced by a `*` character. ## Type of breaking change @@ -27,7 +27,7 @@ This change is a [behavioral change](../../categories.md#behavioral-change). ## Reason for change -The primary reason for this change is to enhance privacy by reducing the risk of sensitive information being logged inadvertently. Query strings often contain sensitive data and excluding them from logs by default helps protect this information. +The primary reason for this change is to enhance privacy by reducing the risk of sensitive information being logged inadvertently. Query strings often contain sensitive data and excluding them from logs by default helps protect this information. The fragment part is being scrubbed to keep the implementation simple and efficient. ## Recommended action From e66dd687c52df080c502c4ea84e4a2425b4aa425 Mon Sep 17 00:00:00 2001 From: antonfirsov Date: Thu, 28 Nov 2024 18:29:28 +0100 Subject: [PATCH 2/2] better wording maybe --- .../core/compatibility/networking/9.0/query-redaction-events.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/core/compatibility/networking/9.0/query-redaction-events.md b/docs/core/compatibility/networking/9.0/query-redaction-events.md index 5579452ca0887..5abb2986b22ca 100644 --- a/docs/core/compatibility/networking/9.0/query-redaction-events.md +++ b/docs/core/compatibility/networking/9.0/query-redaction-events.md @@ -27,7 +27,7 @@ This change is a [behavioral change](../../categories.md#behavioral-change). ## Reason for change -The primary reason for this change was to enhance privacy by reducing the risk of sensitive information being logged inadvertently. Query strings often contain sensitive data, and redacting them from logs by default helps protect this information. The fragment part is being scrubbed to keep the implementation simple and efficient. +The primary reason for this change was to enhance privacy by reducing the risk of sensitive information being logged inadvertently. Query strings often contain sensitive data, and redacting them from logs by default helps protect this information. To keep the implementation simple and efficient, the fragment part is also being scrubbed together with the query. ## Recommended action