make logging consistent for Jwt issuer resolvers

singhbaljit · jzheaux · commit 3088c15dd064 · 2023-08-08T09:07:54.000-06:00
diff --git a/oauth2/oauth2-resource-server/src/main/java/org/springframework/security/oauth2/server/resource/authentication/JwtIssuerAuthenticationManagerResolver.java b/oauth2/oauth2-resource-server/src/main/java/org/springframework/security/oauth2/server/resource/authentication/JwtIssuerAuthenticationManagerResolver.java
@@ -192,7 +192,8 @@ public AuthenticationManager resolve(String issuer) {
 				return authenticationManager;
 			}
 			else {
-				this.logger.debug("Did not resolve AuthenticationManager since issuer is not trusted");
+				this.logger.debug(LogMessage
+						.format("Did not resolve AuthenticationManager since issuer '%s' is not trusted", issuer));
 			}
 			return null;
 		}
diff --git a/oauth2/oauth2-resource-server/src/main/java/org/springframework/security/oauth2/server/resource/authentication/JwtIssuerReactiveAuthenticationManagerResolver.java b/oauth2/oauth2-resource-server/src/main/java/org/springframework/security/oauth2/server/resource/authentication/JwtIssuerReactiveAuthenticationManagerResolver.java
@@ -25,10 +25,13 @@
 import java.util.function.Predicate;
 
 import com.nimbusds.jwt.JWTParser;
+import org.apache.commons.logging.Log;
+import org.apache.commons.logging.LogFactory;
 import reactor.core.publisher.Mono;
 import reactor.core.scheduler.Schedulers;
 
 import org.springframework.core.convert.converter.Converter;
+import org.springframework.core.log.LogMessage;
 import org.springframework.lang.NonNull;
 import org.springframework.security.authentication.AuthenticationManager;
 import org.springframework.security.authentication.ReactiveAuthenticationManager;
@@ -169,6 +172,8 @@ public Mono<String> convert(@NonNull BearerTokenAuthenticationToken token) {
 	static class TrustedIssuerJwtAuthenticationManagerResolver
 			implements ReactiveAuthenticationManagerResolver<String> {
 
+		private final Log logger = LogFactory.getLog(getClass());
+
 		private final Map<String, Mono<ReactiveAuthenticationManager>> authenticationManagers = new ConcurrentHashMap<>();
 
 		private final Predicate<String> trustedIssuer;
@@ -180,11 +185,14 @@ static class TrustedIssuerJwtAuthenticationManagerResolver
 		@Override
 		public Mono<ReactiveAuthenticationManager> resolve(String issuer) {
 			if (!this.trustedIssuer.test(issuer)) {
+				this.logger.debug(LogMessage
+						.format("Did not resolve AuthenticationManager since issuer '%s' is not trusted", issuer));
 				return Mono.empty();
 			}
 			// @formatter:off
 			return this.authenticationManagers.computeIfAbsent(issuer,
 					(k) -> Mono.<ReactiveAuthenticationManager>fromCallable(() -> new JwtReactiveAuthenticationManager(ReactiveJwtDecoders.fromIssuerLocation(k)))
+							.doOnNext((manager) -> this.logger.debug(LogMessage.format("Resolved AuthenticationManager for issuer '%s'", issuer)))
 							.subscribeOn(Schedulers.boundedElastic())
 							.cache((manager) -> Duration.ofMillis(Long.MAX_VALUE), (ex) -> Duration.ZERO, () -> Duration.ZERO)
 			);

Original file line number	Diff line number	Diff line change
`@@ -192,7 +192,8 @@ public AuthenticationManager resolve(String issuer) {`
`192`	`192`	`return authenticationManager;`
`193`	`193`	`}`
`194`	`194`	`else {`
`195`		`- this.logger.debug("Did not resolve AuthenticationManager since issuer is not trusted");`
	`195`	`+ this.logger.debug(LogMessage`
	`196`	`+ .format("Did not resolve AuthenticationManager since issuer '%s' is not trusted", issuer));`
`196`	`197`	`}`
`197`	`198`	`return null;`
`198`	`199`	`}`