By using AWS re:Post, you agree to the Terms of Use
/Is there any AWS service that is able to log URL query string?/

Is there any AWS service that is able to log URL query string?

0

Context: I have a use case that requires a hack to store very important data inside a query string. I understand the security drawback of sending sensitive data with a query string so no need to illustrate that further.

I want to know how AWS treats URL query string when using HTTPS. Is there any AWS service (API Gateway, CloudFront, Amplify, Lamda) that is able to logs or store any of those data in plain text? What policy does AWS have in order to protect those data?

https://forums.aws.amazon.com/thread.jspa?messageID=690297򨡹 This is the only resource I found prior to this question

1 Answers
0

It all depends on how you are implementing the service.

If you come in through CloudFront, the logging is documented here:
https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/logging.html

If you come in through Application Load Balancer, the logging is document here:
https://docs.aws.amazon.com/elasticloadbalancing/latest/application/load-balancer-access-logs.html

If you come in through the Network Load Balancer, the logging is documented here:
https://docs.aws.amazon.com/elasticloadbalancing/latest/network/load-balancer-access-logs.html

If you come in though a Classic Load Balancer, the logging is documented here:
https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/access-log-collection.html

If you come in through an API Gateway, the logging is documented here:
https://docs.aws.amazon.com/apigateway/latest/developerguide/set-up-logging.html

If you hit an Elastic IP on an instance, you will have to consult the documentation of the web server you are using.

answered 3 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions