Remove Logging of Untrusted Data

Author: jzheaux

Diff for: oauth2/oauth2-resource-server/src/main/java/org/springframework/security/oauth2/server/resource/authentication/JwtIssuerAuthenticationManagerResolver.java

@@ -227,8 +227,7 @@ public AuthenticationManager resolve(String issuer) {
 				return authenticationManager;
 			}
 			else {
-				this.logger.debug(LogMessage
-						.format("Did not resolve AuthenticationManager since issuer is not trusted", issuer));
+				this.logger.debug("Did not resolve AuthenticationManager since issuer is not trusted");
 			}
 			return null;
 		}

Diff for: oauth2/oauth2-resource-server/src/main/java/org/springframework/security/oauth2/server/resource/authentication/JwtIssuerReactiveAuthenticationManagerResolver.java

@@ -221,8 +221,7 @@ static class TrustedIssuerJwtAuthenticationManagerResolver
 		@Override
 		public Mono<ReactiveAuthenticationManager> resolve(String issuer) {
 			if (!this.trustedIssuer.test(issuer)) {
-				this.logger.debug(LogMessage
-						.format("Did not resolve AuthenticationManager since issuer is not trusted", issuer));
+				this.logger.debug("Did not resolve AuthenticationManager since issuer is not trusted");
 				return Mono.empty();
 			}
 			// @formatter:off