How to force Spring Boot Security to say a little bit more?
By default spring boot security isn’t too talkative.
If you struggle with some problems and want to see what is going on under the covers, you can always switch to wider log level.
You can do it by providing this property in your application.yml or application.properties file.
logging.level.org.springframework.security: DEBUG
Additionaly you can turn on Spring Web debug logs and set debug parameter to true in your @EnableWebSecurity annotation
logging.level.org.springframework.web: DEBUG
@EnableWebSecurity(debug = true) public class SecurityConfig extends WebSecurityConfigurerAdapter {...}