Uploaded image for project: 'JBoss Enterprise Application Platform'
  1. JBoss Enterprise Application Platform
  2. JBEAP-9416

Elytron Audit Logging does not log principal if simple file format is used

XMLWordPrintable

    • Hide
      • Follow steps Configure Elytron (default profile) in blog post in order to change default configuration to Elytron
      • Start server and deploy attached war (containing servlet secured with BASIC HTTP auth)
      • Access http://127.0.0.1:8080/protected/printRoles in a browser
      • Fill in username and password (authentication will be unsuccessful no matter what is provided)
      • Change format to simple: /subsystem=elytron/file-audit-log=local-audit:write-attribute(name=format,value=SIMPLE)
      • Fill in username and password once more
      • Check JBOSS_HOME/standalone/log/audit.log
      Show
      Follow steps Configure Elytron (default profile) in blog post in order to change default configuration to Elytron Start server and deploy attached war (containing servlet secured with BASIC HTTP auth) Access http://127.0.0.1:8080/protected/printRoles in a browser Fill in username and password (authentication will be unsuccessful no matter what is provided) Change format to simple: /subsystem=elytron/file-audit-log=local-audit:write-attribute(name=format,value=SIMPLE) Fill in username and password once more Check JBOSS_HOME/standalone/log/audit.log

      SIMPLE format of Elytron Audit Logging does not contain the information about the principal when the authentication is not successful. JSON format contains such piece of information.

      Compare JSON format

      3/8/17 3:53 PM,WARNING,{"event":"SecurityAuthenticationFailedEvent","event-time":"3/8/17 3:53 PM","security-identity":{"name":"anonymous","creation-time":"3/8/17 3:53 PM"},"success":false,"principal":"user"}

      to SIMPLE format

      3/8/17 3:54 PM,WARNING,event=SecurityAuthenticationFailedEvent,event-time=3/8/17 3:54 PM,security-identity=[name=anonymous,creation-time=3/8/17 3:54 PM],success=false}

        1. deployment.war
          4 kB

            rhn-cservice-bbaranow Bartosz Baranowski
            jtymel Jan Tymel (Inactive)
            Jan Tymel Jan Tymel (Inactive)
            Jan Tymel Jan Tymel (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: