Hide confidential data from cloudwatch logs

Question

Hide confidential data from cloudwatch logs

We use AWS cognito for our mobile application and register all communication between the application and the server in cloudwatch (loglevel: INFO)

I have an endpoint that takes a user password (POST via ssl) for authentication. This password is logged in cloudwatch logs.

I want all other messages to be logged, so I cannot turn off Log full requests/responses data . Is there anyway to hide this data from cloudwatch logs?

+5

logging amazon-web-services amazon-cloudwatchlogs aws-cognito

Shipra Jan 25 '17 at 14:30

source share

No one has answered this question yet.

See related questions:

1001

Why do people use Heroku when AWS is present? What sets Heroku apart from AWS?

908

How to have git log show filenames such as svn log -v

626

Hide Strange Junk Xcode Logs

454

When to use different levels of logs

4

Facebook / Google-only login (no username / pwd) with AWS Cognito and React

4

Logic / Security Considerations and Confidential Data

2

Cognito Authentication - Where to Look for Logs

0

access to the database from cognito using only the user pool

0

Track full request / response bodies in AWS ApiGateway (not truncated)

0

AWS cloudwatch truncates logs

Hide confidential data from cloudwatch logs

More articles: