Skip to content

Enhance Logging in RequestMatcherDelegatingAuthorizationManage #14837

New issue
New issue
Closed
Closed
Enhance Logging in RequestMatcherDelegatingAuthorizationManage#14837
Assignees
jzheaux
Labels
in: webAn issue in web modules (web, webmvc)type: enhancementA general enhancement
Milestone
 
5.8.13
@canattofilipe

Description

@canattofilipe
canattofilipe
opened on Apr 3, 2024

Expected Behavior
Currently, the method RequestMatcherDelegatingAuthorizationManager.check is logging a message that doesn't provide much value.

When I enable the TRACE log level, I expect to see detailed logs that provide valuable information for troubleshooting purposes.

Current Behavior
The system is currently logging messages similar to this:
2024-04-03T14:38:42.649-03:00 TRACE 488138 --- [io-8080-exec-10] estMatcherDelegatingAuthorizationManager : Authorizing SecurityContextHolderAwareRequestWrapper[ org.springframework.security.web.savedrequest.SavedRequestAwareWrapper@5dff36af]

Logging a class that does not override the toString method merely populates the logs with uninformative content. Consider modifying this log instruction to include the URL being authorized, providing more context for troubleshooting.

spring-security/web/src/main/java/org/springframework/security/web/access/intercept/RequestMatcherDelegatingAuthorizationManager.java

Line 74 in 9b79f68

this.logger.trace(LogMessage.format("Authorizing %s", request));

Metadata

Metadata

Assignees

Labels

in: webAn issue in web modules (web, webmvc)type: enhancementA general enhancement

Type

No type

Projects

No projects

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions