Skip to content

Commit 607c15b

Browse files
authored
Add more logging in prod (#144)
1 parent e809e31 commit 607c15b

File tree

2 files changed

+5
-2
lines changed

2 files changed

+5
-2
lines changed

.nais/prod/nais.yaml

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -215,6 +215,7 @@ data:
215215
216216
logger:
217217
levels:
218+
root: INFO
218219
io.micronaut.security: INFO
219220
no.ssb.dlp.pseudo.service: INFO
220221
io.micronaut.security.token.jwt.validator: DEBUG

src/main/java/no/ssb/dlp/pseudo/service/security/CustomRolesFinder.java

Lines changed: 4 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -44,7 +44,7 @@ public List<String> resolveRoles(Map<String, Object> attributes) {
4444
email = Optional.ofNullable(Objects.toString(attributes.get(tokenConfiguration.getNameKey()), null));
4545
}
4646

47-
log.debug("User {} has a trusted issuer? {}", email, trustedIssuer);
47+
log.info("User {} has a trusted issuer? {}", email, trustedIssuer);
4848

4949
// We check for trustedIssuer when in environments where all authenticated requests are accepted
5050
// This is due to Google tokens being valid for authorization purposes,
@@ -67,14 +67,16 @@ public List<String> resolveRoles(Map<String, Object> attributes) {
6767
}
6868
if (rolesConfig.getUsersGroup().isPresent()) {
6969
final List<Membership> userMembers = cloudIdentityService.listMembers(rolesConfig.getUsersGroup().get());
70+
List<String> userEmails = cloudIdentityService.listMembers(rolesConfig.getUsersGroup().get()).stream().map(v -> v.preferredMemberKey().id()).toList();
71+
log.info("User group {} has members {}", rolesConfig.getUsersGroup().get(), userEmails);
7072
if (email.map(user_email -> userMembers.stream().anyMatch(value -> value.preferredMemberKey().id().equals(user_email))).orElse(false)) {
7173
roles.add(PseudoServiceRole.USER);
7274
}
7375
}
7476
if (roles.isEmpty()) {
7577
log.info("Could not resolve any roles for user {}", email);
7678
}
77-
log.debug("Resolved roles {} for user {}", roles, email);
79+
log.info("Resolved roles {} for user {}", roles, email);
7880
return roles;
7981
}
8082

0 commit comments

Comments
 (0)