In the project “example-proj” I’m able to create a logging sinks into the _default logging bucket that has an exclusion for whatever query I want, this is fine.
However, I’m unable to create a similar sink to the project-scope scope, so e.g. if I were to run the following command:
"At GCP Console, in “Logs Explorer” at “Query preview” you can set a filter condition. You can define a restrictive filter for some messages, It would hide all of them, not only the first one. For example if you do not want to show all the log entries from a particular resource like “gce_instance”, this would be the advanced filter to use:
NOT resource.type="gce_instance"
In your situation, you can use this filter:
NOT "Got more than one input Future failure. Logging failures after the first”
That won’t work for me because I’m coming from the perspective of security and pci compliance. How can I prevent users from being able to access specific lognames?
E.g. I have a logname of “projects/example-proj/logs/stdout-test” and need to figure out a way to prevent anyone from being able to view it, even with high roles like EDITOR or logging viewer etc…
Easiest would be to prevent it from appearing in logger completely, that way I won’t have to worry about who would have permission to view it, but I’m unable to do so because it still appears in the scope > project in logs explorer.