AuditManager auditManager = SecurityServicesUtil.getInstance().getAuditManager();
if(auditManager!= null && auditManager.isAuditOn()){
Principal prin = httpsr.getUserPrincipal();
String user = (prin != null) ? prin.getName(): null;
auditManager.webInvocation(user, httpsr, USERDATA, isGranted);
}
if ( !isGranted && !requestIsSecure) {
if (uri == null) {