From 2b64b83b8939c01fd5aa3e9b34626b1a87d4c8f6 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Abel=20Garci=CC=81a=20de=20Prada?= <agdeprada@izertis.com>
Date: Wed, 28 Oct 2020 09:17:27 +0100
Subject: [PATCH] Do not log Authorization header

---
 .../owncloud/android/lib/common/http/LogInterceptor.kt    | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/owncloudComLibrary/src/main/java/com/owncloud/android/lib/common/http/LogInterceptor.kt b/owncloudComLibrary/src/main/java/com/owncloud/android/lib/common/http/LogInterceptor.kt
index a6f5dd74..0ca90a47 100644
--- a/owncloudComLibrary/src/main/java/com/owncloud/android/lib/common/http/LogInterceptor.kt
+++ b/owncloudComLibrary/src/main/java/com/owncloud/android/lib/common/http/LogInterceptor.kt
@@ -23,6 +23,7 @@
  */
 package com.owncloud.android.lib.common.http
 
+import com.owncloud.android.lib.common.http.HttpConstants.AUTHORIZATION_HEADER
 import com.owncloud.android.lib.common.http.HttpConstants.OC_X_REQUEST_ID
 import com.owncloud.android.lib.common.http.LogBuilder.logHttp
 import com.owncloud.android.lib.common.http.NetworkNode.BODY
@@ -72,7 +73,12 @@ class LogInterceptor : Interceptor {
 
     private fun logHeaders(requestId: String?, headers: Headers, networkPetition: NetworkPetition) {
         headers.forEach { header ->
-            logHttp(networkPetition, HEADER, requestId, "${header.first}: ${header.second}")
+            val headerValue: String = if (header.first.equals(AUTHORIZATION_HEADER, true)) {
+                "[redacted]"
+            } else {
+                header.second
+            }
+            logHttp(networkPetition, HEADER, requestId, "${header.first}: $headerValue")
         }
     }