ITEP-69192 removal of sensitive data from logs (#551)

jcchr · web-flow · commit d51fed39ccd1 · 2025-06-27T13:11:34.000Z
diff --git a/platform/services/credit/app/dependencies.py b/platform/services/credit/app/dependencies.py
@@ -14,12 +14,12 @@
 DATABASE_URL = f"postgresql+psycopg2://{DB_USER}:{DB_PASSWORD}@{DB_HOST}:{DB_PORT}/{DB_NAME}"
 RO_DATABASE_URL = f"postgresql+psycopg2://{DB_USER}:{DB_PASSWORD}@{DB_RO_HOST}:{DB_PORT}/{DB_NAME}"
 
-logger.debug(f"Creating engine using following conn string: {DATABASE_URL}")
+logger.debug(f"Creating engine using following db: {DB_HOST}/{DB_NAME}")
 # DEFAULTS: pool_size=5, max_overflow=10, timeout=30s
 # refreshing connections each 15 min
 engine = create_engine(url=DATABASE_URL, pool_recycle=900)
 
-logger.debug(f"Creating read-only engine using following conn string: {RO_DATABASE_URL}")
+logger.debug(f"Creating read-only engine using following db: {DB_RO_HOST}/{DB_NAME}")
 read_only_engine = create_engine(url=RO_DATABASE_URL, pool_recycle=900)
 
 SessionLocal = sessionmaker(autocommit=False, autoflush=False, bind=engine)
diff --git a/platform/services/user_directory/app/endpoints/user_management/activate_user.py b/platform/services/user_directory/app/endpoints/user_management/activate_user.py
@@ -106,7 +106,6 @@ def verify_payload(handler: UsersHandler, token: str) -> UserType:
             name=JWT_SECRET,
             secrets_list=["key"],
         )["key"]
-        logger.debug(f"secret {secret}")
         unsafe_uid = jwt.decode(
             jwt=token,
             algorithms=[UsersHandler.JWT_ALGORITHM],
