import javax.ws.rs.core.HttpHeaders;
public abstract class AbstractServletFilter {
- protected static final String REDACTED = "***REDACTED***";
protected String getSecureRequestHeaders(HttpServletRequest httpRequest) {
StringBuilder sb = new StringBuilder();
sb.append(header);
sb.append(":");
if (header.equalsIgnoreCase(HttpHeaders.AUTHORIZATION)) {
- sb.append(REDACTED);
+ sb.append(Constants.REDACTED);
} else {
sb.append(httpRequest.getHeader(header));
}
for (String header : headers.keySet()) {
if (!header.equals(HttpHeaders.AUTHORIZATION)) {
printHeaders.add(header, headers.getFirst(header));
+ } else {
+ printHeaders.add(header, Constants.REDACTED);;
}
}
return printHeaders.toString();
@Override
public void filter(ClientRequestContext requestContext, ClientResponseContext responseContext) throws IOException {
- final StringBuilder sb = new StringBuilder();
- if (responseContext.hasEntity()) {
- responseContext.setEntityStream(logInboundEntity(sb, responseContext.getEntityStream(), DEFAULT_CHARSET));
- }
String method = formatMethod(requestContext);
logger.debug("Response from method:{} performed on uri:{} has http status code:{} and response headers:{}",
method, requestContext.getUri(), responseContext.getStatus(), responseContext.getHeaders().toString());
+ if (responseContext.hasEntity()) {
+ final StringBuilder sb = new StringBuilder();
+ responseContext.setEntityStream(logInboundEntity(sb, responseContext.getEntityStream(), DEFAULT_CHARSET));
+ logger.debug(sb.toString());
+ }
}
@Override