[Authz] Adjusted forbidden message for new security route configurati…

…on (#195368) ## Summary Adjusted forbidden message for new security route configuration to be consistent with ES. __Closes: https://github.com/elastic/kibana/issues/195365__ (cherry picked from commit 2759994)
elastic · Oct 10, 2024 · d7c5517 · d7c5517
1 parent d9aeca0
commit d7c5517
Showing 1 changed file with 8 additions and 8 deletions.
diff --git a/x-pack/plugins/security/server/authorization/api_authorization.ts b/x-pack/plugins/security/server/authorization/api_authorization.ts
@@ -87,17 +87,17 @@ export function initAPIAuthorization(
           const missingPrivileges = Object.keys(kibanaPrivileges).filter(
             (key) => !kibanaPrivileges[key]
           );
-          logger.warn(
-            `User not authorized for "${request.url.pathname}${
-              request.url.search
-            }", responding with 403: missing privileges: ${missingPrivileges.join(', ')}`
-          );
+          const forbiddenMessage = `API [${request.route.method.toUpperCase()} ${
+            request.url.pathname
+          }${
+            request.url.search
+          }] is unauthorized for user, this action is granted by the Kibana privileges [${missingPrivileges}]`;
+
+          logger.warn(forbiddenMessage);
 
           return response.forbidden({
             body: {
-              message: `User not authorized for ${request.url.pathname}${
-                request.url.search
-              }, missing privileges: ${missingPrivileges.join(', ')}`,
+              message: forbiddenMessage,
             },
           });
         }