Merge pull request #1632 from lvydra/ELY-2179

[ELY-2179] Add logging to AggregateSecurityRealm
wildfly-security · Dec 8, 2022 · 148bc8b · 148bc8b
2 parents 8501486 + 11765af
commit 148bc8b
Showing 1 changed file with 13 additions and 1 deletion.
diff --git a/auth/realm/base/src/main/java/org/wildfly/security/auth/realm/AggregateSecurityRealm.java b/auth/realm/base/src/main/java/org/wildfly/security/auth/realm/AggregateSecurityRealm.java
@@ -19,6 +19,7 @@
 package org.wildfly.security.auth.realm;
 
 import static org.wildfly.common.Assert.checkNotNullParam;
+import static org.wildfly.security.auth.realm.ElytronMessages.log;
 
 import java.security.Principal;
 import java.security.spec.AlgorithmParameterSpec;
@@ -78,12 +79,18 @@ public AggregateSecurityRealm(final SecurityRealm authenticationRealm, Function<
     public RealmIdentity getRealmIdentity(final Evidence evidence) throws RealmUnavailableException {
         boolean ok = false;
         final RealmIdentity authenticationIdentity = authenticationRealm.getRealmIdentity(evidence);
+        if (authenticationIdentity.exists()) {
+            log.tracef("Authentication identity for principal [%s] found.", evidence.getDecodedPrincipal());
+        }
         final RealmIdentity[] authorizationIdentities = new RealmIdentity[authorizationRealms.length];
         try {
             for (int i = 0; i < authorizationIdentities.length; i++) {
                 SecurityRealm authorizationRealm = authorizationRealms[i];
                 authorizationIdentities[i] = (authorizationRealm == authenticationRealm) ? authenticationIdentity
                         : getAuthorizationIdentity(authorizationRealm, evidence, principalTransformer, authenticationIdentity);
+                if (authorizationIdentities[i].exists()) {
+                    log.tracef("Authorization identity for principal [%s] found.", evidence.getDecodedPrincipal());
+                }
             }
 
             final Identity identity = new Identity(authenticationIdentity, authorizationIdentities);
@@ -104,7 +111,9 @@ public RealmIdentity getRealmIdentity(final Evidence evidence) throws RealmUnava
     public RealmIdentity getRealmIdentity(final Principal principal) throws RealmUnavailableException {
         boolean ok = false;
         final RealmIdentity authenticationIdentity = authenticationRealm.getRealmIdentity(principal);
-
+        if (authenticationIdentity.exists()) {
+            log.tracef("Authentication identity for principal [%s] found.", principal);
+        }
         Principal authorizationPrincipal = principal;
         if (principalTransformer != null) {
             authorizationPrincipal = principalTransformer.apply(authorizationPrincipal);
@@ -116,6 +125,9 @@ public RealmIdentity getRealmIdentity(final Principal principal) throws RealmUna
             for (int i = 0; i < authorizationIdentities.length; i++) {
                 SecurityRealm authorizationRealm = authorizationRealms[i];
                 authorizationIdentities[i] = (authorizationRealm == authenticationRealm) && (principalTransformer == null) ? authenticationIdentity : authorizationRealm.getRealmIdentity(authorizationPrincipal);
+                if (authorizationIdentities[i].exists()) {
+                    log.tracef("Authorization identity for principal [%s] found.", principal);
+                }
             }
 
             final Identity identity = new Identity(authenticationIdentity, authorizationIdentities);