mirror of
https://salsa.debian.org/freeipa-team/freeipa.git
synced 2024-12-23 23:50:03 -06:00
TLS and Dogtag HTTPS request logging improvements
Pretty printing the TLS peer certificate to logs on every request introduces a lot of noise; do not log it (subject name, key usage and validity are still logged). Fix and tidy up some HTTP logging messages for Dogtag requests. Part of: https://fedorahosted.org/freeipa/ticket/5269 Reviewed-By: Jan Cholasta <jcholast@redhat.com>
This commit is contained in:
parent
72b03a5d79
commit
2be8d2d068
@ -324,7 +324,7 @@ def _httplib_request(
|
||||
if isinstance(host, unicode):
|
||||
host = host.encode('utf-8')
|
||||
uri = '%s://%s%s' % (protocol, ipautil.format_netloc(host, port), path)
|
||||
root_logger.debug('request %r', uri)
|
||||
root_logger.debug('request %s %s', method, uri)
|
||||
root_logger.debug('request body %r', request_body)
|
||||
|
||||
headers = headers or {}
|
||||
@ -347,9 +347,8 @@ def _httplib_request(
|
||||
except Exception as e:
|
||||
raise NetworkError(uri=uri, error=str(e))
|
||||
|
||||
root_logger.debug('request status %d', http_status)
|
||||
root_logger.debug('request reason_phrase %r', http_reason_phrase)
|
||||
root_logger.debug('request headers %s', http_headers)
|
||||
root_logger.debug('request body %r', http_body)
|
||||
root_logger.debug('response status %d %s', http_status, http_reason_phrase)
|
||||
root_logger.debug('response headers %s', http_headers)
|
||||
root_logger.debug('response body %r', http_body)
|
||||
|
||||
return http_status, http_reason_phrase, http_headers, http_body
|
||||
|
@ -48,9 +48,6 @@ def auth_certificate_callback(sock, check_sig, is_server, certdb):
|
||||
|
||||
cert = sock.get_peer_certificate()
|
||||
|
||||
root_logger.debug("auth_certificate_callback: check_sig=%s is_server=%s\n%s",
|
||||
check_sig, is_server, str(cert))
|
||||
|
||||
pin_args = sock.get_pkcs11_pin_arg()
|
||||
if pin_args is None:
|
||||
pin_args = ()
|
||||
|
Loading…
Reference in New Issue
Block a user