[jboss-jira] [JBoss JIRA] (ELY-995) Elytron Audit Logging does not log principal if simple file format is used

Jan Tymel (JIRA) issues at jboss.org
Wed Mar 8 10:06:00 EST 2017 

     [ https://issues.jboss.org/browse/ELY-995?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Jan Tymel updated ELY-995:
--------------------------
    Steps to Reproduce: 
* Follow steps _Configure Elytron (default profile)_ in [blog post|http://javlog.cacek.cz/2017/01/enable-elytron-in-wildfly.html] in order to change default configuration to Elytron
* Start server and deploy attached war (containing servlet secured with BASIC HTTP auth)
* Access http://127.0.0.1:8080/protected/printRoles in a browser
* Fill in username and password (authentication will be unsuccessful no matter what is provided)
* Change format to simple: {{/subsystem=elytron/file-audit-log=local-audit:write-attribute(name=format,value=SIMPLE)}}
* Fill in username and password once more
* Check _JBOSS_HOME/standalone/log/audit.log_

  was:
* Follow steps _Configure Elytron (default profile)_ in [blog post|http://javlog.cacek.cz/2017/01/enable-elytron-in-wildfly.html] in order to change default configuration to Elytron
* Start server and deploy attached war (containing servlet secured with BASIC HTTP auth)
* Access http://127.0.0.1:8080/protected/printRoles in a browser
* Fill in username and password (authentication will be unsuccessful no matter what is provided)
* Change format to simple: {{/subsystem=elytron/file-audit-log=local-audit:write-attribute(name=format,value=SIMPLE)}}
* Fill in username and password once more
* Check that _JBOSS_HOME/standalone/log/audit.log_



> Elytron Audit Logging does not log principal if simple file format is used
> --------------------------------------------------------------------------
>
>                 Key: ELY-995
>                 URL: https://issues.jboss.org/browse/ELY-995
>             Project: WildFly Elytron
>          Issue Type: Bug
>            Reporter: Jan Tymel
>            Assignee: Darran Lofthouse
>            Priority: Critical
>         Attachments: deployment.war
>
>
> _SIMPLE_ format of Elytron Audit Logging does not contain the information about the principal when the authentication is not successful. _JSON_ format contains such piece of information.
> Compare _JSON_ format
> {noformat}
> 3/8/17 3:53 PM,WARNING,{"event":"SecurityAuthenticationFailedEvent","event-time":"3/8/17 3:53 PM","security-identity":{"name":"anonymous","creation-time":"3/8/17 3:53 PM"},"success":false,"principal":"user"}
> {noformat}
> to _SIMPLE_ format
> {noformat}
> 3/8/17 3:54 PM,WARNING,event=SecurityAuthenticationFailedEvent,event-time=3/8/17 3:54 PM,security-identity=[name=anonymous,creation-time=3/8/17 3:54 PM],success=false}
> {noformat}



--
This message was sent by Atlassian JIRA
(v7.2.3#72005)

More information about the jboss-jira mailing list