Skip to content

Debug mode shows too much Kubernetes authorization details 0.24.1 #8248

New issue
New issue
Closed
Closed
Debug mode shows too much Kubernetes authorization details 0.24.1#8248
Labels
waiting-for-infoThe issue creator is asked to provide more information.
@dcarrion87

Description

@dcarrion87
dcarrion87
opened on Jun 28, 2023

I noticed in a version update 0.24.1 there is now a button users can press that allows them to start the workspace in debug mode.

This shows credentials / bearer amongst other stuff we do not want them to see.

....
GET /api/v1/namespaces/XXX/services/XXX HTTP/1.1
Host: XXXX
User-Agent: HashiCorp/1.0 Terraform/1.4.6
Accept: application/json, */*
Authorization: Bearer  XXX
Accept-Encoding: gzip
...

Please advise how we can stop this from being possible / allowing users to run/see debug output. This is not ideal at all.

Maybe it has always been there but this is the first version where it was obvious to the user to press it and be able to see the motherload. It also causes a very bad UI experience when loading massive output.

I believe it came in with this PR: #6903

Metadata

Metadata

Assignees

No one assigned

    Labels

    waiting-for-infoThe issue creator is asked to provide more information.

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions