Description
Currently when a Crowd token is rejected it will only show up in the log file if the log level is set to DEBUG. We don't usually run Crowd in DEBUG mode in a production environment so this causes issues when trying to investigate issues with Crowd tokens. It would be useful if there was a one line message that contained:
- the token and any validation factors,
- the user the token belongs to,
- and the reason it was rejected