From c7fe2ec85cf77ede757675f9f068c85d304d9f61 Mon Sep 17 00:00:00 2001
From: mo khan <mo@mokhan.ca>
Date: Wed, 28 May 2025 14:54:14 -0600
Subject: chore: remove logging of sensitive fields

---
 app/middleware/user.go | 11 +++++------
 1 file changed, 5 insertions(+), 6 deletions(-)

(limited to 'app/middleware')

diff --git a/app/middleware/user.go b/app/middleware/user.go
index 317671e..0ffc8cf 100644
--- a/app/middleware/user.go
+++ b/app/middleware/user.go
@@ -13,12 +13,11 @@ func User() func(http.Handler) http.Handler {
 	return func(next http.Handler) http.Handler {
 		return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
 			log.WithFields(r.Context(), log.Fields{
-				"authorization": r.Header.Get("Authorization"),
-				"payload":       r.Header.Get("x-id-jwt-payload"),
-				"photo":         r.Header.Get("x-id-jwt-claim-picture-url"),
-				"profile":       r.Header.Get("x-id-jwt-claim-profile-url"),
-				"sub":           r.Header.Get("x-id-jwt-claim-sub"),
-				"username":      r.Header.Get("x-id-jwt-claim-username"),
+				"payload":  r.Header.Get("x-id-jwt-payload"),
+				"photo":    r.Header.Get("x-id-jwt-claim-picture-url"),
+				"profile":  r.Header.Get("x-id-jwt-claim-profile-url"),
+				"sub":      r.Header.Get("x-id-jwt-claim-sub"),
+				"username": r.Header.Get("x-id-jwt-claim-username"),
 			})
 
 			next.ServeHTTP(w, r.WithContext(cfg.CurrentUser.With(
-- 
cgit v1.2.3