I am testing an undertow server for doing on-the-fly encryption (AES CTR) of responses from a reverse proxy. I have currently implemented this by implementing a StreamSinkConduit and adding this as a wrapper using exchange.addResponseWrapper. I have a few questions:

1) The StreamSinkConduit interface is pretty big and I'm not sure I've implemented all of it correctly. Is there an easier way? At the end of the day, I'm really only doing anything interesting in the write method. I've been looking at the DeflatingStreamSinkConduit, but that is a fair bit more complex than I need. Is there any documentation about when the different methods are called?

2) To initialise the cipher, I need some information about the response, i.e. the offset from the start for Range requests. Currently I intialise the cipher the first time it is requested (in write) using the response code and response headers. Is this a reasonable approach?

3) Can you point me towards some information on logging configuration?

Thanks!

Jeff