Improve Method Security logging

[marcusdacoregio]

This PR removes the trace logs from the PrePostAnnotationSecurityMetadataSource which were producing too much noise in logs without adding much value.

There is already some logs that provide value when the @Pre/PostAuthorize annotations are being used with @EnableGlobalMethodSecurity:

2021-09-17 10:01:49.539 DEBUG 55564 --- [           main] .PrePostAnnotationSecurityMetadataSource : @org.springframework.security.access.prepost.PreAuthorize(value="hasRole('USER')") found on specific method: public java.lang.String example.IndexController.index()
2021-09-17 10:01:49.544 DEBUG 55564 --- [           main] m.DelegatingMethodSecurityMetadataSource : Caching method [CacheKey[example.IndexController; public java.lang.String example.IndexController.index()]] with attributes [[authorize: 'hasRole('USER')', filter: 'null', filterTarget: 'null']]

Additionally, it adds logs for when @EnableMethodSecurity is used with @Pre/PostAuthorize, @Secured and JSR-250 @PermitAll, @DenyAll, @RolesAllowed.

Closes gh-10247

[jzheaux]

Thanks, @marcusdacoregio! I've left feedback inline.

[marcusdacoregio]

Thanks very much for your review @jzheaux. I've updated the PR and replied to this comment #10279 (comment)

[jzheaux]

Thanks, @marcusdacoregio! I've left some inline feedback.

[marcusdacoregio]

Thanks @jzheaux, nice suggestions. I updated the PR and it's ready for your review again.

[jzheaux]

Thanks, @marcusdacoregio! I've left some feedback inline.

In addition to that feedback, will you please separate out the work you are doing with custom AuthorizationDecisions into a separate commit, resolving #9287 at the same time?

[marcusdacoregio]

Thanks @jzheaux, I've updated the PR based on your suggestions

[jzheaux]

Thanks, @marcusdacoregio. I've left feedback inline about the classes recently introduced.

[marcusdacoregio]

Hi @jzheaux , thanks for the review. The code is now updated.