[KARAF-4414] Add LogAuditLoginModule and replace FileAuditLoginModule by default - ASF JIRA

Details

Type: Improvement
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 4.1.0, 4.0.5
Component/s: karaf
Labels:
None

Description

Currently, Karaf enabled the FileAuditLoginModule by default. This login module audit all security actions (logon, logout, etc) performed by users.

However, this is a simple file (populated by a StringWriter), so it always grows up, never rotate and we can't limit the size.

I've implemented a new LogAuditLoginModule that use slf4j to log the security actions.
We should use this login module by default (instead of the FileAuditLoginModule, using a specific appender in etc/org.ops4j.pax.logging.cfg).

Attachments

Activity

People

Assignee:

Jean-Baptiste Onofré

Reporter:

Jean-Baptiste Onofré

Votes:

0 Vote for this issue

Watchers:

2 Start watching this issue

Dates

Created:

11/Mar/16 14:28

Updated:

15/Sep/18 05:45

Resolved:

29/Mar/16 21:45