Project

General

Profile

Actions

Task #3243

open

Text-based audit trail probably does not write all information about audited actions

Added by Petr Fišer about 1 year ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
Logging
Target version:
Start date:
01/23/2023
Due date:
% Done:

0%

Estimated time:
Owner:

Description

This a possible bug in the auditing originally implemented as #2717. We suspect some information is missing.

This is an audit line from a customer's environment ("hostname" and "someuser" are redacted):

<30>Jan 19 14:02:38 hostname czechidm[1478]: 2023-01-19 14:02:38.139  INFO 869556704 --- [event-task-executor-4] AUDIT.ROLE_REQUEST.EXCECUTE.log : result:[SUCCESS] targetName:[] targetUUID:[28e81cf8-60de-4221-8888-d28e1874b0e6] subjectName:[] subjectUUID:[] performedByName:[someuser] performedByUUID:[50d6f29b-15a4-47f5-a71e-d6cf6eac1ef4] transactionUUID:[4efc316a-1eca-459b-beb7-d9a88b27c658] detail:[IN_PROGRESS]

  • All I can make of it is that user "someuser" created a role request.
  • I think the targetName should be present - target user the request was meant for.
  • Possibly there might be subjectName present... or at least an UUID with the role request? I am not entirely sure but the original line looks quite weird to me.

Could you look at this, please? It is possible that there may be some other corner cases.
If you need more data from the log, let me know.

No data to display

Actions

Also available in: Atom PDF