[jboss-jira] [JBoss JIRA] (AS7-6309) Verify audit implications and required APIs
Darran Lofthouse (JIRA)
jira-events at lists.jboss.org
Thu Jan 10 05:06:08 EST 2013
Darran Lofthouse created AS7-6309:
-------------------------------------
Summary: Verify audit implications and required APIs
Key: AS7-6309
URL: https://issues.jboss.org/browse/AS7-6309
Project: Application Server 7
Issue Type: Sub-task
Components: Domain Management, Security
Reporter: Darran Lofthouse
Assignee: Darran Lofthouse
Fix For: 7.3.0.Alpha1
Auditing may be logging as the user that executes a request, if we have used a trust relationship for a request to be run as a different user we need to be able to track back to identify how the user for the request was selected.
i.e. If userA runs something as userB and does something bad we must be able to track back that it was userA making the overall request without userB getting the blame.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list