Security events that should be logged — failed logins, access violations, server errors. Two events are silently swallowed. Check the log panel to find which ones are missing.
Logging failures occur when security-relevant events — authentication failures, authorization violations, critical errors — are not recorded. Without logs, incidents become undetectable, and forensic investigation is impossible after an attack.
| Bug | Failed login triggered → no log entry created |
| Bug | Access violation (403) triggered → no log entry created |
| Correct | Successful login → log entry created with user and IP |
| Correct | Server error → log entry created with error detail |