Bug #28319

Access denied will be logged at the wrong location in nested calls

Added by Christopher Hlubek over 10 years ago. Updated over 9 years ago.

Status:
Needs Feedback
Priority:
Should have
Assignee:
-
Category:
Security
Target version:
-
Start date:
2011-07-19
Due date:
% Done:

0%

Estimated time:
PHP Version:
Has patch:
No
Complexity:

Description

If several method calls that were secured by the PolicyEnforcementAspect are nested, an AccessDeniedException will be logged for the outer method even when the access to the inner method was not allowed.

This is misguiding and makes policy debugging very hard. We should try to log the method that was actually not allowed and try to provide more context for debugging.

#1

Updated by Christopher Hlubek over 10 years ago

Small update: Maybe this occurs only if the method that was denied is used in a runtime evaluation.

#3

Updated by Christian Müller over 9 years ago

  • Status changed from New to Needs Feedback
  • Has patch set to No

Should we still keep this then?

Also available in: Atom PDF