Code Monkey home page Code Monkey logo

Comments (5)

TwiN avatar TwiN commented on August 21, 2024

Upon closer investigation, it looks like the health endpoints should be excluded already: https://github.com/ory/hydra/blob/f588ec69d4fa03f602d3cbb20abd4188195a7375/cmd/server/handler.go#L204

I'll investigate a bit deeper.

Looks like you have to explicitly disable it: https://github.com/ory/hydra/blob/f588ec69d4fa03f602d3cbb20abd4188195a7375/driver/config/serve.go#L71

from x.

TwiN avatar TwiN commented on August 21, 2024

So it looks like this was my fault and I didn't investigate deeply enough before creating this; it's actually documented in https://www.ory.sh/hydra/docs/reference/configuration/

    access_log:
      ## disable_for_health ##
      #
      # Disable access log for health endpoints.
      #
      # Default value: false
      #
      # Set this value using environment variables on
      # - Linux/macOS:
      #    $ export SERVE_ADMIN_ACCESS_LOG_DISABLE_FOR_HEALTH=<value>
      # - Windows Command Line (CMD):
      #    > set SERVE_ADMIN_ACCESS_LOG_DISABLE_FOR_HEALTH=<value>
      #
      disable_for_health: false

With that in mind, I wonder how feasible it would be to disable this by default. Does anybody truly benefit from having access logs enabled for health endpoints?

from x.

aeneasr avatar aeneasr commented on August 21, 2024

Thank you for the report! Indeed, the default is that all logs are available. That way you can investigate easily wether e.g. health checks pass. This can help when services start up and are not responsive. If you have high traffic websites or production deployments, it usually makes sense to disable them. Given that this option is available and documented (although we could probably document it better), do you feel that this issue can be closed?

from x.

aeneasr avatar aeneasr commented on August 21, 2024

For clarification, changing this to default to true might improve the experience for new users who expect this to be the case, but it will be a breaking change for people who rely on this feature. So we won't be changing the default, but it would make sense to better document it.

from x.

aeneasr avatar aeneasr commented on August 21, 2024

I'm closing this as there are currently no plans to change the default

from x.

Related Issues (20)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.