David,
What kind of interceptor? Spring? An AOP library?
JEE 6 Interceptor? Does it have to be in the same transaction context?
Also, you shouldn't be logging user credentials. Username maybe. But most applications use a datasource so all database queries use the same user id anyway.