Adjust API authorization logging (#63350) (#63456)

Co-authored-by: Elastic Machine <[email protected]>
elastic · Apr 14, 2020 · e7285bb · e7285bb
1 parent 18286eb
commit e7285bb
Showing 1 changed file with 2 additions and 3 deletions.
diff --git a/x-pack/plugins/security/server/authorization/api_authorization.ts b/x-pack/plugins/security/server/authorization/api_authorization.ts
@@ -24,7 +24,6 @@ export function initAPIAuthorization(
 
     // if there are no tags starting with "access:", just continue
     if (actionTags.length === 0) {
-      logger.debug('API endpoint is not marked with "access:" tags, skipping.');
       return toolkit.next();
     }
 
@@ -34,11 +33,11 @@ export function initAPIAuthorization(
 
     // we've actually authorized the request
     if (checkPrivilegesResponse.hasAllRequested) {
-      logger.debug(`authorized for "${request.url.path}"`);
+      logger.debug(`User authorized for "${request.url.path}"`);
       return toolkit.next();
     }
 
-    logger.debug(`not authorized for "${request.url.path}"`);
+    logger.warn(`User not authorized for "${request.url.path}": responding with 404`);
     return response.notFound();
   });
 }