private boolean isAuthorizedReport(HttpServletRequest req, String reportName)
{
boolean isAuthorized = isAuthorized(req, Constants.VIEW_REPORT_PREFIX+reportName);
User user = new User();
user.setUsername((String)req.getSession().getAttribute(Constants.SESSION_KEY_USERNAME));
AuditLogger auditLogger = (AuditLogger)WebApplicationContextUtils.getWebApplicationContext(getServletContext()).getBean("auditLogger");
auditLogger.log(new Date(), user.getUsername(), req.getRemoteAddr(), "view report", reportName, isAuthorized, (isAuthorized ? "" : "not authorized"));
return isAuthorized;
}