Details
-
Task
-
Status: Closed
-
Major
-
Resolution: Done
-
UserALE.js 2.0.0
-
None
-
JavaScript
-
Important
Description
We have previously relied on Logstash to handle requests from the page for data from headers. This is a vulnerability for two reasons: it makes certain information passed to UserALE.js via our API unobtainable and it places a strong dependency on Elastic assets and specific system configurations to get basic data.
Definition of Done: Header Requests are Made By UserALE.js not LogStash. Remove configs from existing logstash-config. Confirm that when logging, UserALE.js logs from browser tabs are correctly providing data pushed through UserALE.js API (useraleVersion, toolName, toolVersion, userId.