diff --git a/src/server/gpodder/mod.rs b/src/server/gpodder/mod.rs
index e98b82b..5483935 100644
--- a/src/server/gpodder/mod.rs
+++ b/src/server/gpodder/mod.rs
@@ -41,8 +41,6 @@ pub fn router(ctx: Context) -> Router<Context> {
 
 /// This middleware accepts
 pub async fn auth_middleware(State(ctx): State<Context>, mut req: Request, next: Next) -> Response {
-    tracing::debug!("{:?}", req.headers());
-
     // SAFETY: this extractor's error type is Infallible
     let mut jar: CookieJar = req.extract_parts().await.unwrap();
     let mut auth_user = None;
diff --git a/src/server/mod.rs b/src/server/mod.rs
index 9a8c62e..3e7a0e1 100644
--- a/src/server/mod.rs
+++ b/src/server/mod.rs
@@ -1,7 +1,7 @@
 mod error;
 mod gpodder;
 
-use axum::Router;
+use axum::{extract::Request, middleware::Next, response::Response, Router};
 use tower_http::trace::TraceLayer;
 
 #[derive(Clone)]
@@ -12,6 +12,17 @@ pub struct Context {
 pub fn app(ctx: Context) -> Router {
     Router::new()
         .merge(gpodder::router(ctx.clone()))
+        .layer(axum::middleware::from_fn(header_logger))
         .layer(TraceLayer::new_for_http())
         .with_state(ctx)
 }
+
+async fn header_logger(request: Request, next: Next) -> Response {
+    tracing::debug!("request headers = {:?}", request.headers());
+
+    let res = next.run(request).await;
+
+    tracing::debug!("response headers = {:?}", res.headers());
+
+    res
+}