From 273053dbf3287c02dda60b442cf138a412d8f75b Mon Sep 17 00:00:00 2001
From: Griffin Smith <grfn@gws.fyi>
Date: Sun, 26 Jul 2020 17:42:39 -0400
Subject: fix(web/panettone): Don't log backtraces

The default hunchentoot behavior is to log all local variables when
logging lisp backtraces - this is nice for debugging, but means that if
we hit an error when checking for auth with the ldap server we log the
password provided by the user. No good! Let's just turn off logging of
backtraces for now.

Change-Id: Ibc4242e3e0f974ac53fffc482d3724b0547425ab
Reviewed-on: https://cl.tvl.fyi/c/depot/+/1471
Reviewed-by: glittershark <grfn@gws.fyi>
Tested-by: BuildkiteCI
---
 web/panettone/src/panettone.lisp | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'web')

diff --git a/web/panettone/src/panettone.lisp b/web/panettone/src/panettone.lisp
index c84a206811ef..7d29edb7ac75 100644
--- a/web/panettone/src/panettone.lisp
+++ b/web/panettone/src/panettone.lisp
@@ -547,6 +547,8 @@ updated issue"
   (let ((port (integer-env "PANETTONE_PORT" :default 6161))
         (ldap-port (integer-env "LDAP_PORT" :default 389))
         (data-dir (or (uiop:getenvp "PANETTONE_DATA_DIR") "/var/lib/panettone")))
+    (setq hunchentoot:*show-lisp-backtraces-p* nil)
+    (setq hunchentoot:*log-lisp-backtraces-p* nil)
     (start-panettone :port port
                      :data-dir data-dir
                      :ldap-port ldap-port)
-- 
cgit 1.4.1