From 6a793327c50d27690b4b34db352c23319b79a678 Mon Sep 17 00:00:00 2001
From: Patrick Dowler <pdowler.cadc@gmail.com>
Date: Tue, 1 Oct 2024 09:32:12 -0700
Subject: [PATCH] cred: remove log basic auth credentials

---
 .../main/java/org/opencadc/cred/BasicAuthIdentityManager.java  | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/cred/src/main/java/org/opencadc/cred/BasicAuthIdentityManager.java b/cred/src/main/java/org/opencadc/cred/BasicAuthIdentityManager.java
index c4602e5..6c63776 100644
--- a/cred/src/main/java/org/opencadc/cred/BasicAuthIdentityManager.java
+++ b/cred/src/main/java/org/opencadc/cred/BasicAuthIdentityManager.java
@@ -156,7 +156,6 @@ public Subject validate(Subject subject) throws AccessControlException {
                     username = up[0];
                     password = up[1];
                 }
-                log.error(username + " " + password);
                 if (username != null && password != null) {
                     LocalAuthority loc = new LocalAuthority();
                     URI resourceID = loc.getServiceURI(Standards.SECURITY_METHOD_PASSWORD.toASCIIString());
@@ -168,7 +167,7 @@ public Subject validate(Subject subject) throws AccessControlException {
                         params.put("password", password);
                         HttpPost login = new HttpPost(loginURL, params, true);
                         try {
-                            log.warn("attempting login...");
+                            log.debug("attempting login...");
                             login.prepare();
                             final String tokenKey = "x-vo-bearer";
                             String token = login.getResponseHeader(tokenKey);