On Thu February 25 2010 10:30:07 am easternwahoo wrote: > When using ws-security headers with CXF, it is easy to configure logging > interceptors to log the complete message. Unfortunately, this means the > ws-security headers are displayed in the log. Once we have > authenticated the user's credentials, could we remove the ws-security > headers from the message, and would this solve the problem?
You would need to write a "different" set of logging interceptors, but that's probably not a big deal. The current logging interceptors operate at the stream level which is way before any processing is done. Since the security stuff operates on an SAAJ model, this wouldn't be too hard. You could write an interceptor that lives immediately after the WSS4JInInterceptor stuff, grabs the SAAJ object from the message, pulls off the Security header, and then calls saaj.writeTo(...) or similar to have it write itself to a log. Not a huge amount of work. -- Daniel Kulp [email protected] http://www.dankulp.com/blog
