Taking java as an example, how to better and more efficiently shield sensitive information when processing logs in a unified manner.
1. For example, when using aop to record logs, or using filter to record http request parameters;
2. You may need to shield sensitive information such as passwords, ID numbers, bank card numbers, etc. in many places. How to make it more convenient? Less invasive and more efficient?
Thanks!
1 Sensitive information in business methods should not be written to the log
2 For front-end submission parameters, use tools such as aop to print logs uniformly, and use the AOP interception log Logger method again to blur the corresponding values of sensitive parameters