Revert "Add more logging in prod (#144)" (#145)

mallport · web-flow · commit 7ad2b98bb949 · 2025-06-30T14:16:26.000+02:00
This reverts commit 607c15b.
diff --git a/.nais/prod/nais.yaml b/.nais/prod/nais.yaml
@@ -215,7 +215,6 @@ data:
 
     logger:
       levels:
-        root: INFO
         io.micronaut.security: INFO
         no.ssb.dlp.pseudo.service: INFO
         io.micronaut.security.token.jwt.validator: DEBUG
diff --git a/src/main/java/no/ssb/dlp/pseudo/service/security/CustomRolesFinder.java b/src/main/java/no/ssb/dlp/pseudo/service/security/CustomRolesFinder.java
@@ -44,7 +44,7 @@ public List<String> resolveRoles(Map<String, Object> attributes) {
             email = Optional.ofNullable(Objects.toString(attributes.get(tokenConfiguration.getNameKey()), null));
         }
 
-        log.info("User {} has a trusted issuer? {}", email, trustedIssuer);
+        log.debug("User {} has a trusted issuer? {}", email, trustedIssuer);
 
         // We check for trustedIssuer when in environments where all authenticated requests are accepted
         // This is due to Google tokens being valid for authorization purposes,
@@ -67,16 +67,14 @@ public List<String> resolveRoles(Map<String, Object> attributes) {
         }
         if (rolesConfig.getUsersGroup().isPresent()) {
             final List<Membership> userMembers = cloudIdentityService.listMembers(rolesConfig.getUsersGroup().get());
-            List<String> userEmails = cloudIdentityService.listMembers(rolesConfig.getUsersGroup().get()).stream().map(v -> v.preferredMemberKey().id()).toList();
-            log.info("User group {} has members {}", rolesConfig.getUsersGroup().get(), userEmails);
             if (email.map(user_email -> userMembers.stream().anyMatch(value -> value.preferredMemberKey().id().equals(user_email))).orElse(false)) {
                 roles.add(PseudoServiceRole.USER);
             }
         }
         if (roles.isEmpty()) {
             log.info("Could not resolve any roles for user {}", email);
         }
-        log.info("Resolved roles {} for user {}", roles, email);
+        log.debug("Resolved roles {} for user {}", roles, email);
         return roles;
     }
 

Original file line number	Diff line number	Diff line change
`@@ -44,7 +44,7 @@ public List<String> resolveRoles(Map<String, Object> attributes) {`
`44`	`44`	`email = Optional.ofNullable(Objects.toString(attributes.get(tokenConfiguration.getNameKey()), null));`
`45`	`45`	`}`
`46`	`46`
`47`		`- log.info("User {} has a trusted issuer? {}", email, trustedIssuer);`
	`47`	`+ log.debug("User {} has a trusted issuer? {}", email, trustedIssuer);`
`48`	`48`
`49`	`49`	`// We check for trustedIssuer when in environments where all authenticated requests are accepted`
`50`	`50`	`// This is due to Google tokens being valid for authorization purposes,`
`@@ -67,16 +67,14 @@ public List<String> resolveRoles(Map<String, Object> attributes) {`
`67`	`67`	`}`
`68`	`68`	`if (rolesConfig.getUsersGroup().isPresent()) {`
`69`	`69`	`final List<Membership> userMembers = cloudIdentityService.listMembers(rolesConfig.getUsersGroup().get());`
`70`		`- List<String> userEmails = cloudIdentityService.listMembers(rolesConfig.getUsersGroup().get()).stream().map(v -> v.preferredMemberKey().id()).toList();`
`71`		`- log.info("User group {} has members {}", rolesConfig.getUsersGroup().get(), userEmails);`
`72`	`70`	`if (email.map(user_email -> userMembers.stream().anyMatch(value -> value.preferredMemberKey().id().equals(user_email))).orElse(false)) {`
`73`	`71`	`roles.add(PseudoServiceRole.USER);`
`74`	`72`	`}`
`75`	`73`	`}`
`76`	`74`	`if (roles.isEmpty()) {`
`77`	`75`	`log.info("Could not resolve any roles for user {}", email);`
`78`	`76`	`}`
`79`		`- log.info("Resolved roles {} for user {}", roles, email);`
	`77`	`+ log.debug("Resolved roles {} for user {}", roles, email);`
`80`	`78`	`return roles;`
`81`	`79`	`}`
`82`	`80`