Change this code to not log user-controlled data.

LACNIC · Jan 2, 2025 · 99a90c3 · 99a90c3
1 parent 709a14f
commit 99a90c3
Showing 1 changed file with 0 additions and 4 deletions.
diff --git a/elections-ejb/src/main/java/net/lacnic/elections/ejb/impl/ElectionsManagerEJBBean.java b/elections-ejb/src/main/java/net/lacnic/elections/ejb/impl/ElectionsManagerEJBBean.java
@@ -155,12 +155,8 @@ private boolean parseCaptchaResponse(String response) {
 	public boolean isValidCaptchaResponse(String reCaptchaResponse) {
 		try (CloseableHttpClient httpClient = HttpClients.createDefault();) {
 			appLogger.info("Start verifying reCAPTCHA response");
-			appLogger.info("reCAPTCHA response value: " + reCaptchaResponse);
 
 			String skGoogleApiReCaptcha = EJBFactory.getInstance().getElectionsParametersEJB().getParameter(Constants.SK_GOOGLE_API_RECAPTCHA);
-			String checkURL = "https://www.google.com/recaptcha/api/siteverify" + "?secret=" + skGoogleApiReCaptcha + "&response=" + reCaptchaResponse;
-
-			appLogger.info("Check URL: " + checkURL);
 
 			HttpPost post = new HttpPost("https://www.google.com/recaptcha/api/siteverify");