Out.log - denied access to

d.van.utterbeeck · April 16, 2025, 5:50am

Hi,

The out.log file is filling up with thousands of messages like:
2025-04-15T00:46:31.599+02:00 DEBUG 2080 — [Project] [nio-8891-exec-8] io.jmix.core.AccessLogger : Denied access to [sys_KeyValueEntity.packaging modification] for user [productie] by io.jmix.security.constraint.EntityAttributeConstraint
2025-04-15T00:46:31.600+02:00 DEBUG 2080 — [Project] [nio-8891-exec-8] io.jmix.core.AccessLogger : Denied access to [sys_KeyValueEntity.order modification] for user [productie] by io.jmix.security.constraint.EntityAttributeConstraint
2025-04-15T00:46:31.600+02:00 DEBUG 2080 — [Project] [nio-8891-exec-8] io.jmix.core.AccessLogger : Denied access to [sys_KeyValueEntity.weight modification] for user [productie] by io.jmix.security.constraint.EntityAttributeConstraint
2025-04-15T00:46:31.600+02:00 DEBUG 2080 — [Project] [nio-8891-exec-8] io.jmix.core.AccessLogger : Denied access to [sys_KeyValueEntity.line modification] for user [productie] by io.jmix.security.constraint.EntityAttributeConstraint
2025-04-15T00:46:31.600+02:00 DEBUG 2080 — [Project] [nio-8891-exec-8] io.jmix.core.AccessLogger : Denied access to [sys_KeyValueEntity.itemDescription modification] for user [productie] by io.jmix.security.constraint.EntityAttributeConstraint
2025-04-15T00:46:31.646+02:00 DEBUG 2080 — [Project] [nio-8891-exec-8] io.jmix.core.AccessLogger : Denied access to [sys_KeyValueEntity.packaging modification] for user [productie] by io.jmix.security.constraint.EntityAttributeConstraint
2025-04-15T00:46:31.646+02:00 DEBUG 2080 — [Project] [nio-8891-exec-8] io.jmix.core.AccessLogger : Denied access to [sys_KeyValueEntity.remark modification] for user [productie] by io.jmix.security.constraint.EntityAttributeConstraint
2025-04-15T00:46:31.646+02:00 DEBUG 2080 — [Project] [nio-8891-exec-8] io.jmix.core.AccessLogger : Denied access to [sys_KeyValueEntity.item modification] for user [productie] by io.jmix.security.constraint.EntityAttributeConstraint
2025-04-15T00:46:31.646+02:00 DEBUG 2080 — [Project] [nio-8891-exec-8] io.jmix.core.AccessLogger : Denied access to [sys_KeyValueEntity.receipt modification] for user [productie] by io.jmix.security.constraint.EntityAttributeConstraint

How can I prevent this?

Jmix version: 2.4.2
Jmix Studio Plugin Version:2.5.1-243
IntelliJ IDEA 2024.3.5 (Community Edition)

d.cherkasov · April 17, 2025, 4:37pm

Hello,

It looks like all of those messages are coming from the io.jmix.core.AccessLogger.

As a reminder, there are five log levels in Spring Boot: ERROR, WARN, INFO, DEBUG, and TRACE. You can configure the level for any logger by adding a property to your application.properties (or application.yml):

# syntax:
logging.level.<package-or-class>=<LEVEL>

For example, to suppress the DEBUG and TRACE messages from AccessLogger and only show INFO and above, add:

logging.level.io.jmix.core.AccessLogger=info

Other useful settings include:

Show DEBUG and above

logging.level.io.jmix.core.AccessLogger=debug

Show only ERROR

logging.level.io.jmix.core.AccessLogger=error

Disable this logger entirely

logging.level.io.jmix.core.AccessLogger=off

I hope this helps! If you need any further clarification, just let me know.

Best regards,
Dmitry

d.cherkasov · April 17, 2025, 4:39pm

PS But be careful with disabling security logs - sometimes this is very necessary thing to research some incidents