Prevent CSRF token leaks in server logs

Signed-off-by: Pekka Helenius <fincer89@hotmail.com>

bookstore/src/main/java/com/fjordtek/bookstore/service/HttpServerLogger.java

@@ -43,6 +43,12 @@ public class HttpServerLogger {
 			while (requestParamNames.hasMoreElements()) {
 
 				String paramName     = requestParamNames.nextElement().toString();
+
+				/*
+				 * Do not log CSRF tokens
+				 */
+				if (paramName.contains("csrf")) continue;
+
 				String[] paramValues = request.getParameterValues(paramName);
 
 				requestParams.add(