Spring Security
  1. Spring Security
  2. SEC-1086

AccessDecisionManager implementations should log debug messages about inquired voters

    Details

    • Type: Improvement Improvement
    • Status: Closed
    • Priority: Major Major
    • Resolution: Fixed
    • Affects Version/s: 2.0.4
    • Fix Version/s: 3.0.0 M1
    • Component/s: Core
    • Labels:
      None

      Description

      The standard AccessDecisionManager implementations (AffirmativeBased, ConsensusBased, UnanimousBased) should log on the DEBUG level, which voters they iterate over, and what decision did those return.

      Otherwise one cannot know exactly which voter did cause throwing an AccessDeniedException by the access desicion manager, since standard voters don't log anything too (which is probably OK, as this would be too verbose - well, maybe for TRACE level it would be OK...).

        Activity

        Hide
        Luke Taylor added a comment -

        I've added logging of the results returned by each voter polled.

        Show
        Luke Taylor added a comment - I've added logging of the results returned by each voter polled.
        Hide
        Aleksander Adamowski added a comment -

        Why the "Won't Fix" status? Has the fix been rolled back?

        Show
        Aleksander Adamowski added a comment - Why the "Won't Fix" status? Has the fix been rolled back?
        Hide
        Luke Taylor added a comment -

        Sorry. Administrative error while changing the "affects versions" field.

        Show
        Luke Taylor added a comment - Sorry. Administrative error while changing the "affects versions" field.

          People

          • Assignee:
            Luke Taylor
            Reporter:
            Aleksander Adamowski
          • Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved: