Skip to main content

This content is closed to future replies and is no longer being maintained or updated.
Links may no longer function. If you have a similar request, please write a new post.

Question

 Rajasri Nadapana (RajasriN)
Verizon

Verizon
IN
RajasriN Member since 2014 17 posts
Verizon
Posted: Dec 11, 2017
Last activity: Dec 17, 2017
Posted: 11 Dec 2017 1:06 EST
Last activity: 17 Dec 2017 1:41 EST
Closed
Solved

Parameter Masking in Pega Rules Logs

Hi,

I need to mask all PI data in Pega Rules logs. I can handle in all log messages which are writing through application via Log-Message. But the challenge I'm facing here is with OOTB rules, for example, PI data is passing as parameters to OOTB rule FinishAssignment.

Can anyone help me in fixing this ? Is there any way to mask parameters in Pega Rules log file.

Thanks!

-Rajasri

To see attachments, please log in.
Security

Posted: 6 years ago
Posted: 11 Dec 2017 1:41 EST
Ujjwal Kumar Shukla (UjjwalShukla_GCS)
PEGA
Senior Manager, Technical Support
Pegasystems Inc.
IN

Hi Rajasri,

You can follow https://collaborate.pega.com/question/masking-data-log-files
to mask info in PegaAlerts log.
However for PegaRules log can you please suggest which step is adding sensitive data to Rules log.
Can you provide rules log with dummy data for me to analyse this further.

What is the log type (Error/Debug/Info) with sensitive info.

Thanks,
Ujjwal

To see attachments, please log in.
Posted: 6 years ago
Posted: 11 Dec 2017 3:47 EST
Rajasri Nadapana (RajasriN)
Verizon

Verizon
IN

Hi Ujjwal,

I have done for Alert logs with help of prconfig security settings. Issue with pega rules log, I'm not sure on the exact step, but whenever we submit an assignment which inturn calls FinishAssignment right, there it is adding sensitive data as parameters in log. And the log type is Info.

Thanks!

-Rajasri

To see attachments, please log in.
Posted: 6 years ago
Posted: 11 Dec 2017 3:52 EST
Ujjwal Kumar Shukla (UjjwalShukla_GCS)
PEGA
Senior Manager, Technical Support
Pegasystems Inc.
IN

Hi Rajasri,
Can you send me the sample logs please after changing the sensitive info to random variable.
Also mention which value bothers you.

Thanks,
Ujjwal

To see attachments, please log in.
Posted: 6 years ago
Posted: 11 Dec 2017 4:17 EST
Rajasri Nadapana (RajasriN)
Verizon

Verizon
IN

Hi Ujjwal,

I'm sorry Ujjwal, I can't share as I'm working from restricted location . But I can give you the context, it is printing as below with sensitive info PIDataVariable=PIDataValue with actual property name and value with log type as WARN (Not INFO as mentioned in previous post).

WARN |WebContainer : 5|2017-12-08 02:05:34,265|com.pega.pegarules.session.internal.mgmt.util.URLAccessContext|URLAccessModeWarn:URLAccessPermitted URLAccessDetail CSRFAttack Missing harness ID :From FinishAssignment&pyWorkPage.PIDataVariable=PIDataValue

Thanks!

-Rajasri

To see attachments, please log in.

We'd prefer it if you saw us at our best.

Pega Collaboration Center has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice