diff options
author | Christina Fu <cfu@redhat.com> | 2016-03-24 16:23:05 -0700 |
---|---|---|
committer | Christina Fu <cfu@redhat.com> | 2016-03-28 15:46:43 -0700 |
commit | 41a99a5938c6881a978199fe10b0c392eb27d569 (patch) | |
tree | 9de46099b3cc73cd5f691848bba9aa2b523c10aa /base/server/cmscore/src/com/netscape | |
parent | 93179af9333197cbdce843f16c02107b8d1db17e (diff) | |
download | pki-41a99a5938c6881a978199fe10b0c392eb27d569.tar.gz pki-41a99a5938c6881a978199fe10b0c392eb27d569.tar.xz pki-41a99a5938c6881a978199fe10b0c392eb27d569.zip |
Ticket #1006 Audit logging for TPS REST operations
This patch adds audit logging to TPS REST wrote-specific operations.
The read-specific operations are already captured by AuditEvent=AUTHZ_*
The affected (new or modified) log messages include:
LOGGING_SIGNED_AUDIT_CONFIG_TOKEN_GENERAL_5
LOGGING_SIGNED_AUDIT_CONFIG_TOKEN_PROFILE_6
LOGGING_SIGNED_AUDIT_CONFIG_TOKEN_MAPPING_RESOLVER_6
LOGGING_SIGNED_AUDIT_CONFIG_TOKEN_AUTHENTICATOR_6
LOGGING_SIGNED_AUDIT_CONFIG_TOKEN_CONNECTOR_6
LOGGING_SIGNED_AUDIT_CONFIG_TOKEN_RECORD_6
LOGGING_SIGNED_AUDIT_TOKEN_STATE_CHANGE_8
Diffstat (limited to 'base/server/cmscore/src/com/netscape')
-rw-r--r-- | base/server/cmscore/src/com/netscape/cmscore/logging/Auditor.java | 19 |
1 files changed, 15 insertions, 4 deletions
diff --git a/base/server/cmscore/src/com/netscape/cmscore/logging/Auditor.java b/base/server/cmscore/src/com/netscape/cmscore/logging/Auditor.java index f0bcb5bee..8c99e676c 100644 --- a/base/server/cmscore/src/com/netscape/cmscore/logging/Auditor.java +++ b/base/server/cmscore/src/com/netscape/cmscore/logging/Auditor.java @@ -95,7 +95,8 @@ public class Auditor implements IAuditor { public String getParamString(String scope, String type, String id, Map<String, String> params) { // if no signed audit object exists, bail - if (signedAuditLogger == null) return null; + if (signedAuditLogger == null) + return null; StringBuilder parameters = new StringBuilder(); // always identify the scope of the request @@ -124,16 +125,26 @@ public class Auditor implements IAuditor { + SIGNED_AUDIT_NAME_VALUE_DELIMITER + id); } + return getParamString(parameters, params); + } + + @Override + public String getParamString(StringBuilder parameters, Map<String, String> params) { - if (params == null) return parameters.toString(); + if (parameters == null) { + parameters = new StringBuilder(); + } + if (params == null) + return parameters.toString(); // identify any remaining request parameters - for (Map.Entry<String,String> entry : params.entrySet() ) { + for (Map.Entry<String, String> entry : params.entrySet()) { String name = entry.getKey(); // skip "RULENAME" parameter - if (name.equals(SIGNED_AUDIT_RULENAME)) continue; + if (name.equals(SIGNED_AUDIT_RULENAME)) + continue; parameters.append(SIGNED_AUDIT_NAME_VALUE_PAIRS_DELIMITER); |