log entry cut off - max size for variable or log entry?

Question

I am logging the Java Web Token (JWT) during an Oauth login. The iRule works in general, but the JWT is cut off after 890 characters.Cannot find any reason for it, as log entries and variables should be able to hold more than that. Here's my iRule:when HTTP_REQUEST {

&nbsp;&nbsp;&nbsp;if { [HTTP::header exists Authorization] and [HTTP::header Authorization] contains "Bearer" } {
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;set jwt [getfield [HTTP::header Authorization] " " 2]
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;log local0. "JWT: Client [IP::client_addr] arrived with JWT: $jwt"
&nbsp;&nbsp;&nbsp;}
}

dario_garrido · Answer

Hello Dirken.&nbsp;Take into account that log entries have a maximum size per message."The syslog facility is limited to logging 1024 bytes per request. Longer strings will be truncated."REF - https://clouddocs.f5.com/api/irules/log.html&nbsp;Possible solutions:Use HSL (https://clouddocs.f5.com/api/irules/HSL.html)Capture traffic using tcpdump and decrypt it later on&nbsp;Regards,Dario.

Forum Discussion

log entry cut off - max size for variable or log entry?

1 Reply

The New F5 Certified BIG-IP Administrator Certification Exams Now Live

F5 Academies Are Back – And We’re Coming to a City Near You

Recent Discussions

Question regarding F5 Viprion Configuration Migration to VE.

Sending an HTTP request from iRule without delaying client requests

In F5 APM, how to include multiple DNS suffix?

Issue while migrating config from 4000s to r4600

Username is not filled in EdgeClient in the Modern customization

Related Content

How to Contribute an Article or a Codeshare Entry

Modifying multiple entries in a datagroup via api?

Crontab for backups - Entries not running

APM variable assign examples

SNAT Pool Subent entry

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS