Commit 90e249c
committed
fix(login): remove unconditional logging of OAuth2 access and refresh tokens
OAuth2 access token and refresh token were unconditionally printed to
stderr via log.Printf on every SSO login, regardless of --verbose flag.
Any CI/CD pipeline or log aggregation system capturing stderr would
silently record long-lived credentials in plaintext.
All other sensitive data in the codebase (request bodies, headers) is
already gated behind config.Verbose / config.DumpRequestIfRequired.
The 'Authentication successful' message printed immediately before is
sufficient confirmation; the token values add no diagnostic value.
Signed-off-by: Harish R S <harishrs21082006@gmail.com>1 parent b892bbb commit 90e249c
1 file changed
Lines changed: 0 additions & 2 deletions
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
293 | 293 | | |
294 | 294 | | |
295 | 295 | | |
296 | | - | |
297 | | - | |
298 | 296 | | |
299 | 297 | | |
300 | 298 | | |
| |||
0 commit comments