Project

General

Profile

Actions

Task #705

closed

Audit password change

Added by Alena Peterová over 7 years ago. Updated over 7 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Ondřej Kopr
Category:
Audit
Target version:
Start date:
09/18/2017
Due date:
% Done:

100%

Estimated time:
Owner:

Description

The change of user's password for IdM should be audited. This information should be accessible from the audit log for identity. I should see:
  • for which user was the password changed
  • when was the password changed
  • who changed the password

It would be nice if I could see directly from the list of audit log records, that this was a password change (without the need to click at the Detail). Maybe show "password" in the column "Changed attributes"?

Setting the target version 7.4.0, because this is quite an important security feature. Thanks.

Actions #1

Updated by Ondřej Kopr over 7 years ago

Thanks for feedback, this feature will be added into 7.4.0 release.

Actions #2

Updated by Ondřej Kopr over 7 years ago

  • Status changed from New to Needs feedback
  • Assignee changed from Ondřej Kopr to Radek Tomiška
  • % Done changed from 0 to 90

Create new audit table for IDM_PASSWORD table, for entity IdmPassword and add interface AuditSearchable + refactor audit table for identity, now show all information like audit for identities.

commit: https://github.com/bcvsolutions/CzechIdMng/commit/762ee3b7a41a0a1e89155db2756f7cb870789328

Please Radek could you make a review? Thank you.

Actions #3

Updated by Radek Tomiška over 7 years ago

  • Status changed from Needs feedback to Closed
  • Assignee changed from Radek Tomiška to Ondřej Kopr
  • % Done changed from 90 to 100

It works and code looks nice. I've added entity info component usage to audit detail (entity info is used for audit properties by https://wiki.czechidm.com/devel/dev/conventions/database-conventions#conventions_of_database_design)

Actions

Also available in: Atom PDF