SEC-1086: AccessDecisionManager implementations should log debug messages about inquired voters #1339
Labels
in: core
An issue in spring-security-core
type: enhancement
A general enhancement
type: jira
An issue that was migrated from JIRA
Milestone
Comments
|
Luke Taylor said: I’ve added logging of the results returned by each voter polled. |
|
Aleksander Adamowski said: Why the "Won't Fix" status? Has the fix been rolled back? |
|
Luke Taylor said: Sorry. Administrative error while changing the "affects versions" field. |
spring-projects-issues
added
in: core
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Aleksander Adamowski(Migrated from SEC-1086) said:
The standard AccessDecisionManager implementations (AffirmativeBased, ConsensusBased, UnanimousBased) should log on the DEBUG level, which voters they iterate over, and what decision did those return.
Otherwise one cannot know exactly which voter did cause throwing an AccessDeniedException by the access desicion manager, since standard voters don’t log anything too (which is probably OK, as this would be too verbose – well, maybe for TRACE level it would be OK…).
The text was updated successfully, but these errors were encountered: