Merge branch 'exclude-csrf-controller-from-logs' into 'master'

Exclude dummy CSRF controller from logs Closes #198399 See merge request gitlab-org/gitlab!23693

Merge branch 'exclude-csrf-controller-from-logs' into 'master'
Exclude dummy CSRF controller from logs Closes #198399 See merge request gitlab-org/gitlab!23693
bf5fcf7f · Stan Hu · aeda2685 · 8c52d47d · bf5fcf7f
Commit bf5fcf7f authored Jan 24, 2020 by Stan Hu
Hide whitespace changes
Inline Side-by-side

Showing with 4 additions and 0 deletions

config/initializers/lograge.rb config/initializers/lograge.rb +4 -0

No files found.
--- a/config/initializers/lograge.rb
+++ b/config/initializers/lograge.rb
@@ -15,6 +15,10 @@ unless Gitlab::Runtime.sidekiq?
      data
    end

+    # This isn't a user-reachable controller; we use it to check for a
+    # valid CSRF token in the API
+    config.lograge.ignore_actions = ['Gitlab::RequestForgeryProtection::Controller#index']
+
    # Add request parameters to log output
    config.lograge.custom_options = lambda do |event|
      params = event.payload[:params]