[jboss-dev-forums] [Design of Security on JBoss] - Re: Providing Auditing Capabilities
anil.saldhana@jboss.com
do-not-reply at jboss.com
Tue Aug 22 16:43:32 EDT 2006
http://jira.jboss.com/jira/browse/JBAS-2738
has been implemented in HEAD. The default Audit Provider is a logging provider that basically takes advantage of logging configuration provided by the logging framework to send the log to a particular sink (file, database, jms etc) and provide rolling features.
A piece that is missing is the configuration of the audit providers at the security domain level.
Currently the web layer (JBossWebRealm) and the EJB Security Interceptor do the audit logging for authentication and authorization attempts.
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3966800#3966800
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3966800
More information about the jboss-dev-forums
mailing list