Logging hygiene ensures sensitive information is protected while maintaining useful diagnostic data. Here are important recommendations for ensuring proper logging practices:
  • Sensitive headers, such as service account (SA) tokens, must always be masked in logs to prevent exposure of credentials.
  • User tokens can be optionally masked based on the configured log level policy to balance security with troubleshooting needs.
  • Avoid enabling payload logging by setting include_payloads to true except during short, controlled debug sessions, as prolonged payload logging can expose sensitive data and increase compliance risks.