SEC-1086: AccessDecisionManager implementations should log debug messages about inquired voters #1339
Labels
in: core
An issue in spring-security-core
type: enhancement
A general enhancement
type: jira
An issue that was migrated from JIRA
Milestone
Aleksander Adamowski(Migrated from SEC-1086) said:
The standard AccessDecisionManager implementations (AffirmativeBased, ConsensusBased, UnanimousBased) should log on the DEBUG level, which voters they iterate over, and what decision did those return.
Otherwise one cannot know exactly which voter did cause throwing an AccessDeniedException by the access desicion manager, since standard voters don’t log anything too (which is probably OK, as this would be too verbose – well, maybe for TRACE level it would be OK…).
The text was updated successfully, but these errors were encountered: