Java Developer Tools

Audit - Rules - log4j

This group contains audit rules that check for correct usage of the log4j logging framework.



Check Enabled Before Logging

Check that logging has been enabled before invoking the logging methods.

This audit rule finds invocations of the Log4J logging methods that are not guarded by a check to ensure that the appropriate level of logging has been enabled. Invocations of the logging methods should be guarded to avoid computation of logging output when it isn't going to be reported.

The following invocation of the debug method:

    logger.debug("I never thought we'd get here!");

should be replaced by something like the following:

    if (logger.isDebugEnabled()) {
        logger.debug("I never thought we'd get here!");

Configure Logging In File

Logging should be configured in a file.

This rule find places where a Configurator is used to programatically configure a logger. Configuration of loggers should be done by including configuration information in a configuration file in order to make it easier to change.

The following invocation would be flagged as a violation:

    configurator.doConfigure(null, null);

Log Level

Authentication required

You need to be signed in with Google+ to do that.

Signing you in...

Google Developers needs your permission to do that.