Summary
Spring Framework recently overhauled it's logging via SPR-16898 and Spring Security should do the same. This is an issue that probably needs to be overseen by the Spring Security team, but we would love feedback from the community.
Related tickets:
- [ ] gh-6308 - Better logging support by id in RequestMatcher
- [ ] gh-6274 - Give SecurityFilterChain a name for tracing!
- [x] gh-5758 - No Spring-Security logging with Spring-Boot and WebFlux (resolved)
- [ ] gh-5262 - Add logging in oauth2 modules
- [x] gh-7473 - Provide debug logs if http-method (POST) rejected with 401 when CSRF (default) enabled
- [ ] #12218
- [ ] #11592
Query for additional to look through