log when security token header is missing

JumpMind · Apr 14, 2023 · df2e441 · df2e441
1 parent 9ebda3c
commit df2e441
Showing 1 changed file with 3 additions and 0 deletions.
diff --git a/symmetric-server/src/main/java/org/jumpmind/symmetric/web/AuthenticationInterceptor.java b/symmetric-server/src/main/java/org/jumpmind/symmetric/web/AuthenticationInterceptor.java
@@ -91,6 +91,9 @@ public boolean before(HttpServletRequest req, HttpServletResponse resp) throws I
             }
             nodeId = req.getParameter(WebConstants.NODE_ID);
             if (StringUtils.isEmpty(securityToken) || StringUtils.isEmpty(nodeId)) {
+                if (!StringUtils.isEmpty(nodeId)) {
+                    log.warn("Node '{}' failed to authenticate.  It is missing the security token", nodeId);
+                }
                 ServletUtils.sendError(resp, WebConstants.SC_FORBIDDEN);
                 return false;
             }