refactor: remove attribute from unauthorized response

uselagoon · Jun 7, 2024 · 8f1f273 · 8f1f273
1 parent 38fd482
commit 8f1f273
Showing 1 changed file with 5 additions and 5 deletions.
diff --git a/services/api/src/util/auth.ts b/services/api/src/util/auth.ts
@@ -349,21 +349,21 @@ export const keycloakHasPermission = (grant, requestCache, modelClients, service
       userActivityLogger.user_info(
         `User does not have permission to '${scope}' on '${resource}'`,
         {
-          user: currentUser.id
+          user: currentUser.id,
+          attributes: attributes
         }
       );
     }
 
     userActivityLogger.user_info(
       `User does not have permission to '${scope}' on '${resource}'`,
       {
-        user: grant.access_token.content
+        user: grant.access_token.content,
+        attributes: attributes
       }
     );
     throw new KeycloakUnauthorizedError(
-      `Unauthorized: You don't have permission to "${scope}" on "${resource}": ${JSON.stringify(
-        attributes
-      )}`
+      `Unauthorized: You don't have permission to "${scope}" on "${resource}"`
     );
   };
 };