Level 7
I was posting params in params and not in body using postman. That was the issue.
May 1, 2020
1
Level 7
Nginx logs sometimes contain post parameters (SSL) What is it and how to stop?
So I have a site that is on SSL, and has a http to https redirect. When I use postman to the https site I can see the post parameters in the log
<ip> - - [01/May/2020:03:07:21 +0200] "POST /login?email=test&password=woobi HTTP/1.1" 419 1570 "-" "PostmanRuntime/7.24.1"
Why is that? I do not want it like this
Tho when I use the browser (Firefox) I get this (Ignore the status code)
<ip> - - [01/May/2020:03:11:57 +0200] "POST /login HTTP/2.0" 302 366 "<url>" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:75.0) Gecko/20100101 Firefox/75.0"
This is fine, does it have anything to do with that http/1.1 vs http/2.0?
Please or to participate in this conversation.