diff --git a/src/main/java/org/gcube/smartgears/handlers/application/request/RequestValidator.java b/src/main/java/org/gcube/smartgears/handlers/application/request/RequestValidator.java
index f2a8267..a8f7c5a 100644
--- a/src/main/java/org/gcube/smartgears/handlers/application/request/RequestValidator.java
+++ b/src/main/java/org/gcube/smartgears/handlers/application/request/RequestValidator.java
@@ -148,8 +148,8 @@ public class RequestValidator extends RequestHandler {
 			}catch (KeycloakClientException e) {
 				RequestError.internal_server_error.fire("error contacting keycloak client", e);
 			}
-		} else if (token!=null) 
-			secret = new GCubeSecret(token);
+		} else if (token!=null && !token.isEmpty()) 
+				secret = new GCubeSecret(token);
 		return secret;
 	}
 
diff --git a/src/main/java/org/gcube/smartgears/security/defaults/DefaultAuthorizationProvider.java b/src/main/java/org/gcube/smartgears/security/defaults/DefaultAuthorizationProvider.java
index 8e9f221..9c74a8e 100644
--- a/src/main/java/org/gcube/smartgears/security/defaults/DefaultAuthorizationProvider.java
+++ b/src/main/java/org/gcube/smartgears/security/defaults/DefaultAuthorizationProvider.java
@@ -44,7 +44,7 @@ public class DefaultAuthorizationProvider implements AuthorizationProvider {
 				try {
 					ContextBean scope = new ContextBean(context.replaceAll("%2F", "/"));
 					contexts.add(scope.toString());
-					LOG.info("found context {}",context);
+					LOG.debug("found context {}",context);
 				}catch (IllegalArgumentException e) {
 					LOG.warn("invalid context found in token: {}", context);
 				}