Improve logging clarity in CsrfFilter

DeepDhamala · jzheaux · commit 081c92a9e5de · 2025-07-03T13:00:55.000-06:00
Update toString() method in DefaultRequiresCsrfMatcher to better reflect its logic during trace-level logging. Closes gh-17250 Signed-off-by: Deep Dhamala <dhamaladeep2@gmail.com>
diff --git a/web/src/main/java/org/springframework/security/web/csrf/CsrfFilter.java b/web/src/main/java/org/springframework/security/web/csrf/CsrfFilter.java
@@ -214,7 +214,7 @@ public boolean matches(HttpServletRequest request) {
 
 		@Override
 		public String toString() {
-			return "CsrfNotRequired " + this.allowedMethods;
+			return "IsNotHttpMethod " + this.allowedMethods;
 		}
 
 	}

Original file line number	Diff line number	Diff line change
`@@ -214,7 +214,7 @@ public boolean matches(HttpServletRequest request) {`
`214`	`214`
`215`	`215`	`@Override`
`216`	`216`	`public String toString() {`
`217`		`- return "CsrfNotRequired " + this.allowedMethods;`
	`217`	`+ return "IsNotHttpMethod " + this.allowedMethods;`
`218`	`218`	`}`
`219`	`219`
`220`	`220`	`}`