@ -2166,7 +2166,8 @@ See also the section on "`<<boot-features-error-handling, Error Handling>>`" for
[[howto-sanitize-sensible-values]]
=== Sanitize sensible values
[[howto-sanitize-sensitive-values]]
=== Sanitize Sensitive Values
Information returned by the `env` and `configprops` endpoints can be somewhat sensitive so keys matching a certain pattern are sanitized by default (i.e. their values are replaced by `+******+`).
Spring Boot uses sensible defaults for such keys: for instance, any key ending with the word "password", "secret", "key" or "token" is sanitized.
Phillip Webb
5 years ago