I am working on an issue where the password and username are being shown in the log files of an application. Whenever the application does a POST call, the log of the same gets stored in the httpd logs file. But it shows the password in the plain text(see below). Is there any way I can mask the password? Below is the log which I was talking about.
10.181.214.53 - - [22/Nov/2022:16:26:13 +0530] "POST /uaa/oauth/token?grant_type=password&username=223053925&password=Gei321itc HTTP/2.0" 401 62
I tried editing the custom logs file, but was not successful. Can anyone please help me?