Skip to content

Commit

Permalink
removes output that can show secrets
Browse files Browse the repository at this point in the history 
Stops printing the body of the request to the token endpoint to avoid
showing sensitive information like the client secret. We can add support
for debug/verbose output or add obfuscation of the secret later, this is
just a quick fix to stop showing by default.
  • Loading branch information
@jentz
jentz committed Oct 31, 2024
1 parent 500d785 commit 8fc9880
Showing 1 changed file with 0 additions and 1 deletion.
1 change: 0 additions & 1 deletion token_request.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -41,7 +41,6 @@ func (tReq *TokenRequest) Execute(tokenEndpoint string, httpClient *http.Client)
}

fmt.Fprintf(os.Stderr, "token endpoint: %s\n", tokenEndpoint)
fmt.Fprintf(os.Stderr, "token request body: %s\n", vals.Encode())

req, err := http.NewRequest("POST", tokenEndpoint, strings.NewReader(vals.Encode()))

Expand Down

0 comments on commit 8fc9880

Please sign in to comment.