Uploaded image for project: 'WildFly Elytron'
  1. WildFly Elytron
  2. ELY-995

Elytron Audit Logging does not log principal if simple file format is used

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Critical Critical
    • 1.1.0.Beta29
    • None
    • None
    • None
    • Hide
      • Follow steps Configure Elytron (default profile) in blog post in order to change default configuration to Elytron
      • Start server and deploy attached war (containing servlet secured with BASIC HTTP auth)
      • Access http://127.0.0.1:8080/protected/printRoles in a browser
      • Fill in username and password (authentication will be unsuccessful no matter what is provided)
      • Change format to simple: /subsystem=elytron/file-audit-log=local-audit:write-attribute(name=format,value=SIMPLE)
      • Fill in username and password once more
      • Check JBOSS_HOME/standalone/log/audit.log
      Show
      Follow steps Configure Elytron (default profile) in blog post in order to change default configuration to Elytron Start server and deploy attached war (containing servlet secured with BASIC HTTP auth) Access http://127.0.0.1:8080/protected/printRoles in a browser Fill in username and password (authentication will be unsuccessful no matter what is provided) Change format to simple: /subsystem=elytron/file-audit-log=local-audit:write-attribute(name=format,value=SIMPLE) Fill in username and password once more Check JBOSS_HOME/standalone/log/audit.log

      SIMPLE format of Elytron Audit Logging does not contain the information about the principal when the authentication is not successful. JSON format contains such piece of information.

      Compare JSON format

      3/8/17 3:53 PM,WARNING,{"event":"SecurityAuthenticationFailedEvent","event-time":"3/8/17 3:53 PM","security-identity":{"name":"anonymous","creation-time":"3/8/17 3:53 PM"},"success":false,"principal":"user"}

      to SIMPLE format

      3/8/17 3:54 PM,WARNING,event=SecurityAuthenticationFailedEvent,event-time=3/8/17 3:54 PM,security-identity=[name=anonymous,creation-time=3/8/17 3:54 PM],success=false}

        1. deployment.war
          4 kB

              rhn-cservice-bbaranow Bartosz Baranowski
              jtymel Jan Tymel (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated:
                Resolved: