[jboss-jira] [JBoss JIRA] (AS7-6309) Verify audit implications and required APIs
Brian Stansberry (JIRA)
jira-events at lists.jboss.org
Tue Mar 5 21:32:57 EST 2013
[ https://issues.jboss.org/browse/AS7-6309?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Brian Stansberry updated AS7-6309:
----------------------------------
Fix Version/s: 8.0.0.Alpha1
(was: 7.3.0.Alpha1)
> Verify audit implications and required APIs
> -------------------------------------------
>
> Key: AS7-6309
> URL: https://issues.jboss.org/browse/AS7-6309
> Project: Application Server 7
> Issue Type: Sub-task
> Components: Domain Management, Security
> Reporter: Darran Lofthouse
> Assignee: Darran Lofthouse
> Fix For: 8.0.0.Alpha1
>
>
> Auditing may be logging as the user that executes a request, if we have used a trust relationship for a request to be run as a different user we need to be able to track back to identify how the user for the request was selected.
> i.e. If userA runs something as userB and does something bad we must be able to track back that it was userA making the overall request without userB getting the blame.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list