Add SAML decrypter logger to shipped logback.xml for convenience
Basics
Logistics
Basics
Logistics
Description
The logback.xml shipped with the IdP contains a logger and corresponding property for logging unencrypted assertions. With the addition of SAML proxying and the need to work with assertions after decryption, it would be helpful to have the same for decrypted assertions. Propose adding to logback.xml:
and corresponding: <variable name="idp.loglevel.decryption" value="${idp.loglevel.decryption:-INFO}" />
Environment
None
Activity
Scott Cantor
November 3, 2021 at 12:43 PM
I think it makes more sense to just apply the same log level property to this category by default, that way it's just one setting for people for any encrypt/decrypt logging, which seems like the usual case.
The logback.xml shipped with the IdP contains a logger and corresponding property for logging unencrypted assertions. With the addition of SAML proxying and the need to work with assertions after decryption, it would be helpful to have the same for decrypted assertions. Propose adding to logback.xml:
<logger name="org.opensaml.saml.saml2.encryption.Decrypter" level="${idp.loglevel.encryption}" />
and corresponding:
<variable name="idp.loglevel.decryption" value="${idp.loglevel.decryption:-INFO}" />