Redact JWT token from logs

Author: thekindofme

src/app/code/community/Zendesk/Zendesk/controllers/Adminhtml/ZendeskController.php

@@ -172,7 +172,10 @@ public function authenticateAction()
             $payload['external_id'] = $user->getId();
         }
 
-        Mage::log('Admin JWT: ' . var_export($payload, true), null, 'zendesk.log');
+        // Redact token then log the rest of the payload
+        $jti_redacted_payload = $payload; // arrays are copied by value in php, not just a ref being passed around
+        $jti_redacted_payload["jti"] = "REDACTED";
+        Mage::log('Admin JWT: ' . var_export($jti_redacted_payload, true), null, 'zendesk.log');
 
         $jwt = JWT::encode($payload, $token);
         $return = $return_url ? "&return_to=".$return_url : "";

src/app/code/community/Zendesk/Zendesk/controllers/SsoController.php

@@ -75,7 +75,10 @@ public function loginAction()
             $payload['external_id'] = $user->getId();
         }
 
-        Mage::log('End-user JWT: ' . var_export($payload, true), null, 'zendesk.log');
+        // Redact token then log the rest of the payload
+        $jti_redacted_payload = $payload; // arrays are copied by value in php, not just a ref being passed around
+        $jti_redacted_payload["jti"] = "REDACTED";
+        Mage::log('End-user JWT: ' . var_export($jti_redacted_payload, true), null, 'zendesk.log');
 
         $jwt = JWT::encode($payload, $token);
         $return_url = $return_url ? "&return_to=".$return_url : "";