Removed vulnerability of log injection

pagopa · May 8, 2024 · 4b1c0e9 · 4b1c0e9
1 parent 5763258
commit 4b1c0e9
Showing 1 changed file with 1 addition and 3 deletions.
diff --git a/web/src/main/java/it/pagopa/selfcare/dashboard/web/controller/SupportController.java b/web/src/main/java/it/pagopa/selfcare/dashboard/web/controller/SupportController.java
@@ -4,7 +4,6 @@
 import io.swagger.annotations.ApiOperation;
 import io.swagger.v3.oas.annotations.tags.Tag;
 import io.swagger.v3.oas.annotations.tags.Tags;
-import it.pagopa.selfcare.commons.base.logging.LogUtils;
 import it.pagopa.selfcare.commons.base.security.SelfCareUser;
 import it.pagopa.selfcare.dashboard.connector.model.support.SupportResponse;
 import it.pagopa.selfcare.dashboard.core.SupportService;
@@ -40,9 +39,8 @@ public SupportController(SupportService supportService,
     public SupportResponse sendSupportRequest(@RequestBody @Valid SupportRequestDto supportRequestDto,
                                      Authentication authentication) {
         log.trace("sendSupportRequest start");
-        log.debug(LogUtils.CONFIDENTIAL_MARKER, "sendSupportRequest request = {}", supportRequestDto);
         final SelfCareUser selfCareUser = (SelfCareUser) authentication.getPrincipal();
-        SupportResponse supportResponse = supportService.sendRequest(supportMapper.toZendeskRequest(supportRequestDto, selfCareUser));
+        final SupportResponse supportResponse = supportService.sendRequest(supportMapper.toZendeskRequest(supportRequestDto, selfCareUser));
         log.debug("sendSupportRequest result = {}", supportResponse.toString());
         log.trace("sendSupportRequest end");
         return supportResponse;