Skip to content

SEC-2152: OpenIDAuthenticationFilter errors are "lost" if logging > debug #2377

New issue
New issue
Open
Open
SEC-2152: OpenIDAuthenticationFilter errors are "lost" if logging > debug#2377
Labels
in: openidAn issue in spring-security-openidtype: enhancementA general enhancementtype: jiraAn issue that was migrated from JIRA
@spring-projects-issues

Description

@spring-projects-issues
spring-projects-issues
opened on Mar 22, 2013

Daniel Serodio (Migrated from SEC-2152) said:

I'm using OpenIDAuthenticationFilter, and when I have an authentication error (in my case, most often caused by SSL problems), the error doesn't appear anywhere unless I set org.springframework.security.openid logging to DEBUG.

In the catch block at OpenIDAuthenticationFilter.java:132, this error should be logged as INFO, or at least, the re-thrown exception (AuthenticationServiceException) should wrap the caught exception.

Metadata

Metadata

Assignees

No one assigned

    Labels

    in: openidAn issue in spring-security-openidtype: enhancementA general enhancementtype: jiraAn issue that was migrated from JIRA

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions