Include sensitive data in Entity Framework logging by setting EnableSensitiveDataLogging

When we turn on logging in Entity Framework, by default it won’t output sensitive information such as query parameter values for security reasons.

The EnableSensitiveDataLogging method can be used to tell EF to log these sensitive values. This can be helpful during development and debugging. However, enabling this in production can expose sensitive data, so you need to be cautious about where and when you use it.

There are a couple of different ways to set EnableSensitiveDataLogging to true depending on how you are configuring your DbContext class …

Enabling EnableSensitiveDataLogging in the DbContext OnConfiguring method

Enabling EnableSensitiveDataLogging in ASP.NET DI ConfigureServices method

Enabling EnableSensitiveDataLogging for a standalone DbContext

Note in the above examples, I’ve explicitly passed in true to the .EnableSensitiveDataLogging method. Technically this isn’t needed as true is the default, but I’d still recommend including it just for extra clarity.


You might also be interested in...

Suppress output of OnConfiguring method in Entity Framework Core 5.0
If you’re using Entity Framework Core with the database first approach and re-scaffold you’ll see that by default EF Core … Continue reading Suppress output of OnConfiguring method in Entity...

Reading Entity Framework Core connection string from appSettings.json
When you run Scoffold-DbCotext with a connection string EF Core will scaffold your DB but will put the hardcoded connection string … Continue reading Reading Entity Framework Core connection string from...

Setting audit columns in Entity Framework Core when using the database first approach
It’s a very common use case for applications to have to track when records are created or modified and which … Continue reading Setting audit columns in Entity Framework Core...

Setting batch size in Entity Framework Core
Entity Framework (pre-core) didn’t support batching of CUD statements, so if you were inserting 100 entities for example, EF sent … Continue reading Setting batch size in Entity Framework Core...

View SQL queries run by Entity Framework Core in the console
In Entity Framework Core writing the executed queries to the console is easy. Just create a ILoggerFactory and then configure … Continue reading View SQL queries run by Entity Framework...

Leave a Reply

Your email address will not be published. Required fields are marked *