Coverage Report

Coverage Report - org.acegisecurity.event.authorization.LoggerListener

Classes in this File

89%

100%

 /* Copyright 2004, 2005, 2006 Acegi Technology Pty Limited
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
  * You may obtain a copy of the License at
  *
  *     http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */
 
 package org.acegisecurity.event.authorization;
 
 import org.apache.commons.logging.Log;
 import org.apache.commons.logging.LogFactory;
 
 import org.springframework.context.ApplicationEvent;
 import org.springframework.context.ApplicationListener;
 
 
 /**
  * Outputs interceptor-related application events to Commons Logging.
  * <p>
  * All failures are logged at the warning level, with success events logged at the information level,
  * and public invocation events logged at the debug level.
  * </p>
  *
  * @author Ben Alex
  * @version $Id: LoggerListener.java 1784 2007-02-24 21:00:24Z luke_t $
  */
 public class LoggerListener implements ApplicationListener {
     //~ Static fields/initializers =====================================================================================
 
     private static final Log logger = LogFactory.getLog(LoggerListener.class);
 
     //~ Methods ========================================================================================================
 
     public void onApplicationEvent(ApplicationEvent event) {
         if (event instanceof AuthenticationCredentialsNotFoundEvent) {
             AuthenticationCredentialsNotFoundEvent authEvent = (AuthenticationCredentialsNotFoundEvent) event;
 
             if (logger.isWarnEnabled()) {
                 logger.warn("Security interception failed due to: " + authEvent.getCredentialsNotFoundException()
                     + "; secure object: " + authEvent.getSource() + "; configuration attributes: "
                     + authEvent.getConfigAttributeDefinition());
             }
         }
 
         if (event instanceof AuthorizationFailureEvent) {
             AuthorizationFailureEvent authEvent = (AuthorizationFailureEvent) event;
 
             if (logger.isWarnEnabled()) {
                 logger.warn("Security authorization failed due to: " + authEvent.getAccessDeniedException()
                     + "; authenticated principal: " + authEvent.getAuthentication()
                     + "; secure object: " + authEvent.getSource()
                     + "; configuration attributes: " + authEvent.getConfigAttributeDefinition());
             }
         }
 
         if (event instanceof AuthorizedEvent) {
             AuthorizedEvent authEvent = (AuthorizedEvent) event;
 
             if (logger.isInfoEnabled()) {
                 logger.info("Security authorized for authenticated principal: " + authEvent.getAuthentication()
                     + "; secure object: " + authEvent.getSource() + "; configuration attributes: "
                     + authEvent.getConfigAttributeDefinition());
             }
         }
 
         if (event instanceof PublicInvocationEvent) {
             PublicInvocationEvent authEvent = (PublicInvocationEvent) event;
 
             if (logger.isInfoEnabled()) {
                 logger.info("Security interception not required for public secure object: " + authEvent.getSource());
             }
         }
     }
 }

1		/* Copyright 2004, 2005, 2006 Acegi Technology Pty Limited
2		*
3		* Licensed under the Apache License, Version 2.0 (the "License");
4		* you may not use this file except in compliance with the License.
5		* You may obtain a copy of the License at
6		*
7		* http://www.apache.org/licenses/LICENSE-2.0
8		*
9		* Unless required by applicable law or agreed to in writing, software
10		* distributed under the License is distributed on an "AS IS" BASIS,
11		* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12		* See the License for the specific language governing permissions and
13		* limitations under the License.
14		*/
15
16		package org.acegisecurity.event.authorization;
17
18		import org.apache.commons.logging.Log;
19		import org.apache.commons.logging.LogFactory;
20
21		import org.springframework.context.ApplicationEvent;
22		import org.springframework.context.ApplicationListener;
23
24
25		/**
26		* Outputs interceptor-related application events to Commons Logging.
27		* <p>
28		* All failures are logged at the warning level, with success events logged at the information level,
29		* and public invocation events logged at the debug level.
30		* </p>
31		*
32		* @author Ben Alex
33		* @version $Id: LoggerListener.java 1784 2007-02-24 21:00:24Z luke_t $
34		*/
35	34	public class LoggerListener implements ApplicationListener {
36		//~ Static fields/initializers =====================================================================================
37
38	2	private static final Log logger = LogFactory.getLog(LoggerListener.class);
39
40		//~ Methods ========================================================================================================
41
42		public void onApplicationEvent(ApplicationEvent event) {
43	46	if (event instanceof AuthenticationCredentialsNotFoundEvent) {
44	1	AuthenticationCredentialsNotFoundEvent authEvent = (AuthenticationCredentialsNotFoundEvent) event;
45
46	1	if (logger.isWarnEnabled()) {
47	1	logger.warn("Security interception failed due to: " + authEvent.getCredentialsNotFoundException()
48		+ "; secure object: " + authEvent.getSource() + "; configuration attributes: "
49		+ authEvent.getConfigAttributeDefinition());
50		}
51		}
52
53	46	if (event instanceof AuthorizationFailureEvent) {
54	2	AuthorizationFailureEvent authEvent = (AuthorizationFailureEvent) event;
55
56	2	if (logger.isWarnEnabled()) {
57	2	logger.warn("Security authorization failed due to: " + authEvent.getAccessDeniedException()
58		+ "; authenticated principal: " + authEvent.getAuthentication()
59		+ "; secure object: " + authEvent.getSource()
60		+ "; configuration attributes: " + authEvent.getConfigAttributeDefinition());
61		}
62		}
63
64	46	if (event instanceof AuthorizedEvent) {
65	7	AuthorizedEvent authEvent = (AuthorizedEvent) event;
66
67	7	if (logger.isInfoEnabled()) {
68	0	logger.info("Security authorized for authenticated principal: " + authEvent.getAuthentication()
69		+ "; secure object: " + authEvent.getSource() + "; configuration attributes: "
70		+ authEvent.getConfigAttributeDefinition());
71		}
72		}
73
74	46	if (event instanceof PublicInvocationEvent) {
75	2	PublicInvocationEvent authEvent = (PublicInvocationEvent) event;
76
77	2	if (logger.isInfoEnabled()) {
78	0	logger.info("Security interception not required for public secure object: " + authEvent.getSource());
79		}
80		}
81	46	}
82		}