From b47fff0f31c8017435fc5e29e739c5a55b41292f Mon Sep 17 00:00:00 2001
From: kohsuke <kohsuke@71c3de6d-444a-0410-be80-ed276b4c234a>
Date: Wed, 5 Aug 2009 23:52:16 +0000
Subject: [PATCH] added more logging.

git-svn-id: https://hudson.dev.java.net/svn/hudson/trunk/hudson/main@20483 71c3de6d-444a-0410-be80-ed276b4c234a
---
 core/src/main/java/hudson/security/SidACL.java | 16 +++++++++++++++-
 1 file changed, 15 insertions(+), 1 deletion(-)

diff --git a/core/src/main/java/hudson/security/SidACL.java b/core/src/main/java/hudson/security/SidACL.java
index 8248fbb991..f3d6a2c3a2 100644
--- a/core/src/main/java/hudson/security/SidACL.java
+++ b/core/src/main/java/hudson/security/SidACL.java
@@ -29,6 +29,10 @@ import org.acegisecurity.acls.sid.PrincipalSid;
 import org.acegisecurity.acls.sid.GrantedAuthoritySid;
 import org.acegisecurity.acls.sid.Sid;
 
+import java.util.logging.Logger;
+import java.util.logging.Level;
+import static java.util.logging.Level.FINE;
+
 /**
  * {@link ACL} that checks permissions based on {@link GrantedAuthority}
  * of the {@link Authentication}.
@@ -39,8 +43,16 @@ public abstract class SidACL extends ACL {
 
     @Override
     public boolean hasPermission(Authentication a, Permission permission) {
-        if(a==SYSTEM)   return true;
+        if(a==SYSTEM) {
+            if(LOGGER.isLoggable(FINE))
+                LOGGER.fine("hasPermission("+a+","+permission+")=>SYSTEM user has full access");
+            return true;
+        }
         Boolean b = _hasPermission(a,permission);
+
+        if(LOGGER.isLoggable(FINE))
+            LOGGER.fine("hasPermission("+a+","+permission+")=>"+(b==null?"null, thus false":b));
+
         if(b==null) b=false;    // default to rejection
         return b;
     }
@@ -124,4 +136,6 @@ public abstract class SidACL extends ACL {
             }
         };
     }
+
+    private static final Logger LOGGER = Logger.getLogger(SidACL.class.getName());
 }
-- 
GitLab