Just to give an update, I solved this problem by enhancing the method PaymentGatewayServices.processAuthResult to replace the credit card number after the authorization is complete.
String number = (String)creditCard.get("cardNumber"); String lastFourDigits = number.substring(number.length() - 4, number.length()); String firstDigits = number.substring(0, number.length() - 4); firstDigits = Pattern.compile(".").matcher(firstDigits).replaceAll("x"); creditCard.set("cardNumber", firstDigits + lastFourDigits); creditCard.store(); I also had to modify the capture and refund methods in the specific processor code to use the request token instead of the credit card number. I really do wish ofbiz would build this as a configurable option into the system as I have worked with some of the biggest online ecommerce retailers and in my experience storing credit card numbers is not the best practice. -- View this message in context: http://ofbiz.135035.n4.nabble.com/Clearing-credit-card-data-after-capture-tp203987p3328916.html Sent from the OFBiz - Dev mailing list archive at Nabble.com.