Updates to log4j dependency

hygieia · erictice · Jul 12, 2021 · Jul 12, 2021 · Jul 13, 2021 · Jul 23, 2021
commit f6b619abac7cd010fdd7f1f0e911d1a330704cd9
diff --git a/pom.xml b/pom.xml
@@ -83,6 +83,7 @@
         <jackson.version>2.11.4</jackson.version>
         <jasypt.version>1.18</jasypt.version>
         <logback.version>1.2.3</logback.version>
+        <log4j2.version>2.14.1</log4j2.version>
         <mongodb.version>4.0.0</mongodb.version>
         <jjwt.version>0.6.0</jjwt.version>
         <springfox.version>2.4.0</springfox.version>
@@ -157,10 +158,15 @@
 
         <!-- https://mvnrepository.com/artifact/log4j/log4j -->
 <dependency>
-    <groupId>log4j</groupId>
-    <artifactId>log4j</artifactId>
-    <version>1.2.17</version>
-</dependency>
+    <groupId>org.apache.logging.log4j</groupId>
+    <artifactId>log4j-api</artifactId>
+     <version>${log4j2.version}</version>
+  </dependency>
+  <dependency>
+    <groupId>org.apache.logging.log4j</groupId>
+    <artifactId>log4j-core</artifactId>
+     <version>${log4j2.version}</version>
+  </dependency>
 
 
         <dependency>

diff --git a/src/main/java/com/capitalone/dashboard/auth/ldap/CustomUserDetailsContextMapper.java b/src/main/java/com/capitalone/dashboard/auth/ldap/CustomUserDetailsContextMapper.java
@@ -1,6 +1,7 @@
 package com.capitalone.dashboard.auth.ldap;
 
-import org.apache.log4j.Logger;
+import org.apache.logging.log4j.Logger;
+import org.apache.logging.log4j.LogManager;
 import org.springframework.context.annotation.Configuration;
 import org.springframework.ldap.core.DirContextAdapter;
 import org.springframework.ldap.core.DirContextOperations;
@@ -14,7 +15,7 @@
 @Configuration
 public class CustomUserDetailsContextMapper extends LdapUserDetailsMapper {
 
-    private static final Logger LOGGER = Logger.getLogger(CustomUserDetailsContextMapper.class);
+    private static final Logger LOGGER = LogManager.getLogger(CustomUserDetailsContextMapper.class);
 
     @Override
     public CustomUserDetails mapUserFromContext(DirContextOperations ctx, String username, Collection authorities) {

diff --git a/src/main/java/com/capitalone/dashboard/auth/sso/SsoAuthenticationFilter.java b/src/main/java/com/capitalone/dashboard/auth/sso/SsoAuthenticationFilter.java
@@ -7,7 +7,8 @@
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
 
-import org.apache.log4j.Logger;
+import org.apache.logging.log4j.Logger;
+import org.apache.logging.log4j.LogManager;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.security.authentication.AuthenticationManager;
 import org.springframework.security.core.Authentication;
@@ -19,7 +20,7 @@
 
 @Component
 public class SsoAuthenticationFilter extends UsernamePasswordAuthenticationFilter {
-	private static final Logger LOGGER = Logger.getLogger(SsoAuthenticationFilter.class);
+	private static final Logger LOGGER = LogManager.getLogger(SsoAuthenticationFilter.class);
 
 	@Autowired
 	private SsoAuthenticationService ssoAuthenticationService;

diff --git a/src/main/java/com/capitalone/dashboard/auth/sso/SsoAuthenticationServiceImpl.java b/src/main/java/com/capitalone/dashboard/auth/sso/SsoAuthenticationServiceImpl.java
@@ -5,7 +5,8 @@
 import java.util.HashMap;
 import java.util.Map;
 
-import org.apache.log4j.Logger;
+import org.apache.logging.log4j.Logger;
+import org.apache.logging.log4j.LogManager;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.security.core.Authentication;
 import org.springframework.security.core.GrantedAuthority;
@@ -17,7 +18,7 @@
 
 @Component
 public class SsoAuthenticationServiceImpl implements SsoAuthenticationService {
-	private static final Logger LOGGER = Logger.getLogger(SsoAuthenticationServiceImpl.class);
+	private static final Logger LOGGER = LogManager.getLogger(SsoAuthenticationServiceImpl.class);
 
 	@Autowired
 	private SsoAuthenticationUtil ssoAuthenticationUtil;

diff --git a/src/main/java/com/capitalone/dashboard/auth/sso/SsoAuthenticationUtil.java b/src/main/java/com/capitalone/dashboard/auth/sso/SsoAuthenticationUtil.java
@@ -3,7 +3,8 @@
 import java.util.ArrayList;
 import java.util.Map;
 
-import org.apache.log4j.Logger;
+import org.apache.logging.log4j.Logger;
+import org.apache.logging.log4j.LogManager;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.security.core.Authentication;
 import org.springframework.security.core.GrantedAuthority;
@@ -16,7 +17,7 @@
 
 @Component
 public class SsoAuthenticationUtil {
-	private static final Logger LOGGER = Logger.getLogger(SsoAuthenticationUtil.class);
+	private static final Logger LOGGER = LogManager.getLogger(SsoAuthenticationUtil.class);
 
 	@Autowired
 	private AuthProperties authProperties;

diff --git a/src/main/java/com/capitalone/dashboard/auth/token/JwtAuthenticationFilter.java b/src/main/java/com/capitalone/dashboard/auth/token/JwtAuthenticationFilter.java
@@ -11,7 +11,8 @@
 
 import org.apache.commons.collections4.MapUtils;
 import org.apache.commons.lang3.StringUtils;
-import org.apache.log4j.Logger;
+import org.apache.logging.log4j.Logger;
+import org.apache.logging.log4j.LogManager;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.core.annotation.Order;
 import org.springframework.security.core.Authentication;
@@ -24,7 +25,7 @@
 @Order(2)
 public class JwtAuthenticationFilter extends OncePerRequestFilter {
 
-    private static final Logger LOGGER = Logger.getLogger(JwtAuthenticationFilter.class);
+    private static final Logger LOGGER = LogManager.getLogger(JwtAuthenticationFilter.class);
 	private TokenAuthenticationService tokenAuthenticationService;
 
 	@Autowired

diff --git a/src/main/java/com/capitalone/dashboard/logging/LoggingFilter.java b/src/main/java/com/capitalone/dashboard/logging/LoggingFilter.java
@@ -40,7 +40,8 @@
 import org.apache.commons.io.output.TeeOutputStream;
 import org.apache.commons.lang3.StringUtils;
 import org.apache.commons.lang3.exception.ExceptionUtils;
-import org.apache.log4j.Logger;
+import org.apache.logging.log4j.Logger;
+import org.apache.logging.log4j.LogManager;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.core.annotation.Order;
 import org.springframework.http.HttpMethod;
@@ -57,7 +58,7 @@
 @Order(1)
 public class LoggingFilter implements Filter {
 
-    private static final Logger LOGGER = Logger.getLogger("LoggingFilter");
+    private static final Logger LOGGER = LogManager.getLogger("LoggingFilter");
 
     private static final String API_USER_KEY = "apiUser";
 

diff --git a/src/main/java/com/capitalone/dashboard/rest/PingController.java b/src/main/java/com/capitalone/dashboard/rest/PingController.java
@@ -1,6 +1,7 @@
 package com.capitalone.dashboard.rest;
 
-import org.apache.log4j.Logger;
+import org.apache.logging.log4j.Logger;
+import org.apache.logging.log4j.LogManager;
 import org.springframework.beans.factory.annotation.Value;
 import org.springframework.context.annotation.PropertySource;
 import org.springframework.http.HttpStatus;
@@ -15,7 +16,7 @@
 
 @RestController
 public class PingController {
-	private static final Logger LOGGER = Logger.getLogger(PingController.class);
+	private static final Logger LOGGER = LogManager.getLogger(PingController.class);
 
     @Value("${version.number}")
     private String versionNumber;

diff --git a/src/main/java/com/capitalone/dashboard/service/ApiTokenServiceImpl.java b/src/main/java/com/capitalone/dashboard/service/ApiTokenServiceImpl.java
@@ -10,7 +10,8 @@
 import java.util.Optional;
 
 import org.apache.commons.collections4.CollectionUtils;
-import org.apache.log4j.Logger;
+import org.apache.logging.log4j.Logger;
+import org.apache.logging.log4j.LogManager;
 import org.bson.types.ObjectId;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.security.authentication.BadCredentialsException;
@@ -33,7 +34,7 @@
 @Component
 public class ApiTokenServiceImpl implements ApiTokenService {
 
-    private static final Logger LOGGER = Logger.getLogger(ApiTokenServiceImpl.class);
+    private static final Logger LOGGER = LogManager.getLogger(ApiTokenServiceImpl.class);
 
     private ApiTokenRepository apiTokenRepository;
 

diff --git a/src/main/java/com/capitalone/dashboard/service/BuildServiceImpl.java b/src/main/java/com/capitalone/dashboard/service/BuildServiceImpl.java
@@ -27,7 +27,8 @@
 import com.querydsl.core.BooleanBuilder;
 import org.apache.commons.collections4.CollectionUtils;
 import org.apache.commons.lang3.StringUtils;
-import org.apache.log4j.Logger;
+import org.apache.logging.log4j.Logger;
+import org.apache.logging.log4j.LogManager;
 import org.bson.types.ObjectId;
 import org.joda.time.LocalDate;
 import org.springframework.beans.factory.annotation.Autowired;
@@ -60,7 +61,7 @@ public class BuildServiceImpl implements BuildService {
     @Autowired
     private ApiSettings settings;
 
-    private static final Logger LOGGER = Logger.getLogger(BuildService.class);
+    private static final Logger LOGGER = LogManager.getLogger(BuildService.class);
 
     @Autowired
     public BuildServiceImpl(BuildRepository buildRepository,

diff --git a/src/main/java/com/capitalone/dashboard/service/DynamicPipelineServiceImpl.java b/src/main/java/com/capitalone/dashboard/service/DynamicPipelineServiceImpl.java
@@ -16,7 +16,8 @@
 
 import com.capitalone.dashboard.misc.HygieiaException;
 import org.apache.commons.lang3.ObjectUtils;
-import org.apache.log4j.Logger;
+import org.apache.logging.log4j.Logger;
+import org.apache.logging.log4j.LogManager;
 import org.bson.types.ObjectId;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.stereotype.Service;
@@ -65,7 +66,7 @@
  */
 @Service("dynamic-pipeline")
 public class DynamicPipelineServiceImpl implements PipelineService {
-	private static final Logger logger = Logger.getLogger(DynamicPipelineServiceImpl.class);
+	private static final Logger logger = LogManager.getLogger(DynamicPipelineServiceImpl.class);
 
     private static final int PROD_COMMIT_DATE_RANGE_DEFAULT = -90;
 

diff --git a/src/main/java/com/capitalone/dashboard/service/FeatureFlagServiceImpl.java b/src/main/java/com/capitalone/dashboard/service/FeatureFlagServiceImpl.java
@@ -6,7 +6,6 @@
 import com.google.gson.Gson;
 import com.google.gson.GsonBuilder;
 import org.apache.commons.collections4.IterableUtils;
-import org.apache.log4j.Logger;
 import org.bson.types.ObjectId;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.stereotype.Component;

diff --git a/src/main/java/com/capitalone/dashboard/service/ScoreDashboardServiceImpl.java b/src/main/java/com/capitalone/dashboard/service/ScoreDashboardServiceImpl.java
@@ -8,7 +8,8 @@
 import com.capitalone.dashboard.repository.CollectorItemRepository;
 import com.capitalone.dashboard.repository.ScoreCollectorItemRepository;
 import org.apache.commons.collections.CollectionUtils;
-import org.apache.log4j.Logger;
+import org.apache.logging.log4j.Logger;
+import org.apache.logging.log4j.LogManager;
 import org.bson.types.ObjectId;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.stereotype.Service;
@@ -18,7 +19,7 @@
 @Service
 public class ScoreDashboardServiceImpl implements ScoreDashboardService {
 
-  private static final Logger LOGGER = Logger.getLogger(ScoreDashboardServiceImpl.class);
+  private static final Logger LOGGER = LogManager.getLogger(ScoreDashboardServiceImpl.class);
 
   private final CollectorService collectorService;
   private final ScoreCollectorItemRepository scoreCollectorItemRepository;

diff --git a/src/main/java/com/capitalone/dashboard/service/ServiceAccountServiceImpl.java b/src/main/java/com/capitalone/dashboard/service/ServiceAccountServiceImpl.java
@@ -3,7 +3,8 @@
 import com.capitalone.dashboard.model.ServiceAccount;
 import com.capitalone.dashboard.repository.ServiceAccountRepository;
 import com.google.common.collect.Sets;
-import org.apache.log4j.Logger;
+import org.apache.logging.log4j.Logger;
+import org.apache.logging.log4j.LogManager;
 import org.bson.types.ObjectId;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.stereotype.Component;
@@ -13,7 +14,7 @@
 @Component
 public class ServiceAccountServiceImpl implements ServiceAccountService {
 
-    private static final Logger LOGGER = Logger.getLogger(ServiceAccountServiceImpl.class);
+    private static final Logger LOGGER = LogManager.getLogger(ServiceAccountServiceImpl.class);
 
 
     private ServiceAccountRepository serviceAccountRepository;

diff --git a/src/main/java/com/capitalone/dashboard/service/TestResultServiceImpl.java b/src/main/java/com/capitalone/dashboard/service/TestResultServiceImpl.java
@@ -20,7 +20,8 @@
 import hygieia.transformer.JunitXmlToTestCapabilityTransformer;
 import hygieia.transformer.JunitXmlToTestCapabilityTransformerV2;
 import org.apache.commons.lang3.StringUtils;
-import org.apache.log4j.Logger;
+import org.apache.logging.log4j.Logger;
+import org.apache.logging.log4j.LogManager;
 import org.bson.types.ObjectId;
 import org.joda.time.format.DateTimeFormat;
 import org.springframework.beans.factory.annotation.Autowired;
@@ -52,7 +53,7 @@ public class TestResultServiceImpl implements TestResultService {
     private final CmdbService cmdbService;
     private final ApiSettings apiSettings;
 
-    private static final Logger LOGGER = Logger.getLogger(ApiTokenServiceImpl.class);
+    private static final Logger LOGGER = LogManager.getLogger(ApiTokenServiceImpl.class);
 
     @Autowired
     public TestResultServiceImpl(TestResultRepository testResultRepository,

diff --git a/src/main/java/com/capitalone/dashboard/service/UserInfoServiceImpl.java b/src/main/java/com/capitalone/dashboard/service/UserInfoServiceImpl.java
@@ -6,7 +6,8 @@
 
 import com.capitalone.dashboard.auth.AuthProperties;
 import org.apache.commons.lang3.StringUtils;
-import org.apache.log4j.Logger;
+import org.apache.logging.log4j.Logger;
+import org.apache.logging.log4j.LogManager;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.security.core.GrantedAuthority;
 import org.springframework.security.core.authority.SimpleGrantedAuthority;
@@ -32,7 +33,7 @@
 @Component
 public class UserInfoServiceImpl implements UserInfoService {
 
-	private static final Logger LOGGER = Logger.getLogger(UserInfoServiceImpl.class);
+	private static final Logger LOGGER = LogManager.getLogger(UserInfoServiceImpl.class);
 
 	private UserInfoRepository userInfoRepository;
 	@Autowired

diff --git a/src/test/java/com/capitalone/dashboard/logging/LoggingFilterTest.java b/src/test/java/com/capitalone/dashboard/logging/LoggingFilterTest.java
@@ -11,7 +11,8 @@
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
 
-import org.apache.log4j.Logger;
+import org.apache.logging.log4j.Logger;
+import org.apache.logging.log4j.LogManager;
 import org.junit.Test;
 import org.junit.runner.RunWith;
 import org.mockito.InjectMocks;