I agree with everything Donagh said: not a security issue, but something that needs to be fixed.
The debug log line at https://github.com/openstack/swift/blob/master/swift/common/middleware/tempauth.py#L250 is emitting this.
For non-debug (ie expected prod) usage, we've got the https://github.com/openstack/swift/blob/master/etc/proxy-server.conf-sample#L634-L644 setting for the "normal" log lines. We should still suppress this. I'd be a fan of just removing that debug log line.
I agree with everything Donagh said: not a security issue, but something that needs to be fixed.
The debug log line at https:/ /github. com/openstack/ swift/blob/ master/ swift/common/ middleware/ tempauth. py#L250 is emitting this.
For non-debug (ie expected prod) usage, we've got the https:/ /github. com/openstack/ swift/blob/ master/ etc/proxy- server. conf-sample# L634-L644 setting for the "normal" log lines. We should still suppress this. I'd be a fan of just removing that debug log line.