From 16cbce7ed059148753c9d57ef774f0a483bcaef3 Mon Sep 17 00:00:00 2001
From: Naeem Ullah <enaeemullah@gmail.com>
Date: Sun, 1 Feb 2026 10:36:14 +0500
Subject: [PATCH] Password encrypted

Password encrypted in log table.
---
 .../configuration/filter/LoggingFilter.java   | 20 ++++++++++++++++++-
 1 file changed, 19 insertions(+), 1 deletion(-)

diff --git a/common/src/main/java/com/mfsys/common/configuration/filter/LoggingFilter.java b/common/src/main/java/com/mfsys/common/configuration/filter/LoggingFilter.java
index 0eb2170..305898d 100644
--- a/common/src/main/java/com/mfsys/common/configuration/filter/LoggingFilter.java
+++ b/common/src/main/java/com/mfsys/common/configuration/filter/LoggingFilter.java
@@ -64,7 +64,13 @@ public class LoggingFilter extends OncePerRequestFilter {
             log.setDateTime(startTime);
             log.setMethod(request.getMethod());
             log.setRequestUri(request.getRequestURI());
-            log.setRequestBody(requestBody);
+            if("/aconnect/authentication/login".equals(request.getRequestURI()) || "/aconnect/signin".equals(request.getRequestURI())){
+                String maskedBody = maskPassword(requestBody);
+                log.setRequestBody(maskedBody);
+
+            }else{
+                log.setRequestBody(requestBody);
+            }
             log.setRemoteIp(request.getRemoteAddr());
             log.setResponseCode(response.getStatus());
 
@@ -110,4 +116,16 @@ public class LoggingFilter extends OncePerRequestFilter {
             return "Error reading request body: " + e.getMessage();
         }
     }
+
+    private String maskPassword(String jsonString) {
+        if (jsonString == null || !jsonString.contains("password")) {
+            return jsonString;
+        }
+
+        // Simple regex approach
+        return jsonString.replaceAll(
+                "(\"password\"\\s*:\\s*\")[^\"]*(\")",
+                "$1********$2"
+        );
+    }
 }