diff options
Diffstat (limited to 'base/server/cms/src')
23 files changed, 85 insertions, 165 deletions
diff --git a/base/server/cms/src/com/netscape/cms/authentication/CMCAuth.java b/base/server/cms/src/com/netscape/cms/authentication/CMCAuth.java index 8d70b8dfe..66a356965 100644 --- a/base/server/cms/src/com/netscape/cms/authentication/CMCAuth.java +++ b/base/server/cms/src/com/netscape/cms/authentication/CMCAuth.java @@ -81,6 +81,7 @@ import com.netscape.certsrv.base.IExtendedPluginInfo; import com.netscape.certsrv.base.SessionContext; import com.netscape.certsrv.logging.AuditEvent; import com.netscape.certsrv.logging.ILogger; +import com.netscape.certsrv.logging.LogEvent; import com.netscape.certsrv.profile.EProfileException; import com.netscape.certsrv.profile.IProfile; import com.netscape.certsrv.profile.IProfileAuthenticator; @@ -1071,14 +1072,8 @@ public class CMCAuth implements IAuthManager, IExtendedPluginInfo, signedAuditLogger.log(msg); } - protected void audit(AuditEvent event) { - - String template = event.getMessage(); - Object[] params = event.getParameters(); - - String message = CMS.getLogMessage(template, params); - - audit(message); + protected void audit(LogEvent event) { + signedAuditLogger.log(event); } /** diff --git a/base/server/cms/src/com/netscape/cms/authentication/CMCUserSignedAuth.java b/base/server/cms/src/com/netscape/cms/authentication/CMCUserSignedAuth.java index 4165d50ed..ab9a94ab8 100644 --- a/base/server/cms/src/com/netscape/cms/authentication/CMCUserSignedAuth.java +++ b/base/server/cms/src/com/netscape/cms/authentication/CMCUserSignedAuth.java @@ -83,6 +83,7 @@ import com.netscape.certsrv.base.IExtendedPluginInfo; import com.netscape.certsrv.base.SessionContext; import com.netscape.certsrv.logging.AuditEvent; import com.netscape.certsrv.logging.ILogger; +import com.netscape.certsrv.logging.LogEvent; import com.netscape.certsrv.profile.EProfileException; import com.netscape.certsrv.profile.IProfile; import com.netscape.certsrv.profile.IProfileAuthenticator; @@ -1294,14 +1295,8 @@ public class CMCUserSignedAuth implements IAuthManager, IExtendedPluginInfo, signedAuditLogger.log(msg); } - protected void audit(AuditEvent event) { - - String template = event.getMessage(); - Object[] params = event.getParameters(); - - String message = CMS.getLogMessage(template, params); - - audit(message); + protected void audit(LogEvent event) { + signedAuditLogger.log(event); } /** diff --git a/base/server/cms/src/com/netscape/cms/logging/LogFile.java b/base/server/cms/src/com/netscape/cms/logging/LogFile.java index b28b810f8..1b4aeee0d 100644 --- a/base/server/cms/src/com/netscape/cms/logging/LogFile.java +++ b/base/server/cms/src/com/netscape/cms/logging/LogFile.java @@ -75,6 +75,7 @@ import com.netscape.certsrv.logging.ELogException; import com.netscape.certsrv.logging.ILogEvent; import com.netscape.certsrv.logging.ILogEventListener; import com.netscape.certsrv.logging.ILogger; +import com.netscape.certsrv.logging.LogEvent; import com.netscape.certsrv.logging.LogSource; import com.netscape.certsrv.logging.SignedAuditEvent; import com.netscape.certsrv.logging.SystemEvent; @@ -1532,13 +1533,7 @@ public class LogFile implements ILogEventListener, IExtendedPluginInfo { signedAuditLogger.log(msg); } - protected void audit(AuditEvent event) { - - String template = event.getMessage(); - Object[] params = event.getParameters(); - - String message = CMS.getLogMessage(template, params); - - audit(message); + protected void audit(LogEvent event) { + signedAuditLogger.log(event); } } diff --git a/base/server/cms/src/com/netscape/cms/logging/Logger.java b/base/server/cms/src/com/netscape/cms/logging/Logger.java index 64653c2fa..ecb839f38 100644 --- a/base/server/cms/src/com/netscape/cms/logging/Logger.java +++ b/base/server/cms/src/com/netscape/cms/logging/Logger.java @@ -20,10 +20,12 @@ package com.netscape.cms.logging; import java.util.Hashtable; import java.util.Properties; +import com.netscape.certsrv.apps.CMS; import com.netscape.certsrv.logging.ILogEvent; import com.netscape.certsrv.logging.ILogQueue; import com.netscape.certsrv.logging.ILogger; import com.netscape.certsrv.logging.LogCategory; +import com.netscape.certsrv.logging.LogEvent; import com.netscape.certsrv.logging.LogSource; /** @@ -108,6 +110,16 @@ public class Logger implements ILogger { log(category, null, source, level, msg, null); } + public void log(LogEvent event) { + + String messageID = event.getMessage(); + Object[] params = event.getParameters(); + + String message = CMS.getLogMessage(messageID, params); + + log(message); + } + /** * Logs an event using default log level. * diff --git a/base/server/cms/src/com/netscape/cms/profile/common/BasicProfile.java b/base/server/cms/src/com/netscape/cms/profile/common/BasicProfile.java index bf6193499..ef0b889e0 100644 --- a/base/server/cms/src/com/netscape/cms/profile/common/BasicProfile.java +++ b/base/server/cms/src/com/netscape/cms/profile/common/BasicProfile.java @@ -30,8 +30,8 @@ import com.netscape.certsrv.base.EBaseException; import com.netscape.certsrv.base.IConfigStore; import com.netscape.certsrv.base.SessionContext; import com.netscape.certsrv.common.NameValuePairs; -import com.netscape.certsrv.logging.AuditEvent; import com.netscape.certsrv.logging.ILogger; +import com.netscape.certsrv.logging.LogEvent; import com.netscape.certsrv.profile.EProfileException; import com.netscape.certsrv.profile.ERejectException; import com.netscape.certsrv.profile.IPolicyConstraint; @@ -1177,14 +1177,8 @@ public abstract class BasicProfile implements IProfile { signedAuditLogger.log(msg); } - protected void audit(AuditEvent event) { - - String template = event.getMessage(); - Object[] params = event.getParameters(); - - String message = CMS.getLogMessage(template, params); - - audit(message); + protected void audit(LogEvent event) { + signedAuditLogger.log(event); } /** diff --git a/base/server/cms/src/com/netscape/cms/profile/input/EnrollInput.java b/base/server/cms/src/com/netscape/cms/profile/input/EnrollInput.java index f63f8801c..331988594 100644 --- a/base/server/cms/src/com/netscape/cms/profile/input/EnrollInput.java +++ b/base/server/cms/src/com/netscape/cms/profile/input/EnrollInput.java @@ -32,6 +32,7 @@ import com.netscape.certsrv.base.IConfigStore; import com.netscape.certsrv.base.SessionContext; import com.netscape.certsrv.logging.AuditEvent; import com.netscape.certsrv.logging.ILogger; +import com.netscape.certsrv.logging.LogEvent; import com.netscape.certsrv.profile.EProfileException; import com.netscape.certsrv.profile.IProfile; import com.netscape.certsrv.profile.IProfileContext; @@ -257,14 +258,8 @@ public abstract class EnrollInput implements IProfileInput { signedAuditLogger.log(msg); } - protected void audit(AuditEvent event) { - - String template = event.getMessage(); - Object[] params = event.getParameters(); - - String message = CMS.getLogMessage(template, params); - - audit(message); + protected void audit(LogEvent event) { + signedAuditLogger.log(event); } /** diff --git a/base/server/cms/src/com/netscape/cms/profile/updater/SubsystemGroupUpdater.java b/base/server/cms/src/com/netscape/cms/profile/updater/SubsystemGroupUpdater.java index 453a86c86..795319173 100644 --- a/base/server/cms/src/com/netscape/cms/profile/updater/SubsystemGroupUpdater.java +++ b/base/server/cms/src/com/netscape/cms/profile/updater/SubsystemGroupUpdater.java @@ -26,8 +26,8 @@ import com.netscape.certsrv.base.ConflictingOperationException; import com.netscape.certsrv.base.EBaseException; import com.netscape.certsrv.base.IConfigStore; import com.netscape.certsrv.base.SessionContext; -import com.netscape.certsrv.logging.AuditEvent; import com.netscape.certsrv.logging.ILogger; +import com.netscape.certsrv.logging.LogEvent; import com.netscape.certsrv.logging.event.ConfigRoleEvent; import com.netscape.certsrv.profile.EProfileException; import com.netscape.certsrv.profile.IEnrollProfile; @@ -265,14 +265,8 @@ public class SubsystemGroupUpdater implements IProfileUpdater { signedAuditLogger.log(msg); } - protected void audit(AuditEvent event) { - - String template = event.getMessage(); - Object[] params = event.getParameters(); - - String message = CMS.getLogMessage(template, params); - - audit(message); + protected void audit(LogEvent event) { + signedAuditLogger.log(event); } private String auditSubjectID() { diff --git a/base/server/cms/src/com/netscape/cms/realm/PKIRealm.java b/base/server/cms/src/com/netscape/cms/realm/PKIRealm.java index f74b9dac9..7ff0913a0 100644 --- a/base/server/cms/src/com/netscape/cms/realm/PKIRealm.java +++ b/base/server/cms/src/com/netscape/cms/realm/PKIRealm.java @@ -16,8 +16,8 @@ import com.netscape.certsrv.authentication.IAuthToken; import com.netscape.certsrv.authentication.ICertUserDBAuthentication; import com.netscape.certsrv.authentication.IPasswdUserDBAuthentication; import com.netscape.certsrv.base.SessionContext; -import com.netscape.certsrv.logging.AuditEvent; import com.netscape.certsrv.logging.ILogger; +import com.netscape.certsrv.logging.LogEvent; import com.netscape.certsrv.logging.event.AuthFailEvent; import com.netscape.certsrv.logging.event.AuthSuccessEvent; import com.netscape.certsrv.usrgrp.EUsrGrpException; @@ -215,13 +215,7 @@ public class PKIRealm extends RealmBase { signedAuditLogger.log(msg); } - protected void audit(AuditEvent event) { - - String template = event.getMessage(); - Object[] params = event.getParameters(); - - String message = CMS.getLogMessage(template, params); - - audit(message); + protected void audit(LogEvent event) { + signedAuditLogger.log(event); } } diff --git a/base/server/cms/src/com/netscape/cms/servlet/admin/AdminServlet.java b/base/server/cms/src/com/netscape/cms/servlet/admin/AdminServlet.java index 5b136be2f..c42b6b776 100644 --- a/base/server/cms/src/com/netscape/cms/servlet/admin/AdminServlet.java +++ b/base/server/cms/src/com/netscape/cms/servlet/admin/AdminServlet.java @@ -49,9 +49,9 @@ import com.netscape.certsrv.base.IExtendedPluginInfo; import com.netscape.certsrv.base.SessionContext; import com.netscape.certsrv.common.Constants; import com.netscape.certsrv.common.NameValuePairs; -import com.netscape.certsrv.logging.AuditEvent; import com.netscape.certsrv.logging.IAuditor; import com.netscape.certsrv.logging.ILogger; +import com.netscape.certsrv.logging.LogEvent; import com.netscape.certsrv.logging.event.AuthFailEvent; import com.netscape.certsrv.logging.event.AuthSuccessEvent; import com.netscape.certsrv.logging.event.AuthzFailEvent; @@ -60,6 +60,8 @@ import com.netscape.certsrv.logging.event.RoleAssumeEvent; import com.netscape.certsrv.usrgrp.EUsrGrpException; import com.netscape.certsrv.usrgrp.IUGSubsystem; import com.netscape.certsrv.usrgrp.IUser; +import com.netscape.cms.logging.Logger; +import com.netscape.cms.logging.SignedAuditLogger; import com.netscape.cms.servlet.base.UserInfo; import com.netscape.cmsutil.util.Utils; @@ -94,9 +96,8 @@ import netscape.security.x509.X509CertImpl; */ public class AdminServlet extends HttpServlet { - /** - * - */ + private static Logger signedAuditLogger = SignedAuditLogger.getLogger(); + private static final long serialVersionUID = 7740464244137421542L; private final static String HDR_AUTHORIZATION = "Authorization"; private final static String HDR_LANG = "accept-language"; @@ -953,22 +954,11 @@ public class AdminServlet extends HttpServlet { * @param msg signed audit log message */ protected void audit(String msg) { - - if (auditor == null) { - return; - } - - auditor.log(msg); + signedAuditLogger.log(msg); } - protected void audit(AuditEvent event) { - - String template = event.getMessage(); - Object[] params = event.getParameters(); - - String message = CMS.getLogMessage(template, params); - - audit(message); + protected void audit(LogEvent event) { + signedAuditLogger.log(event); } /** diff --git a/base/server/cms/src/com/netscape/cms/servlet/admin/GroupMemberProcessor.java b/base/server/cms/src/com/netscape/cms/servlet/admin/GroupMemberProcessor.java index c6ae5b1b4..ae2945111 100644 --- a/base/server/cms/src/com/netscape/cms/servlet/admin/GroupMemberProcessor.java +++ b/base/server/cms/src/com/netscape/cms/servlet/admin/GroupMemberProcessor.java @@ -391,7 +391,7 @@ public class GroupMemberProcessor extends Processor { if (auditor == null) return; - auditor.log(new ConfigRoleEvent( + signedAuditLogger.log(new ConfigRoleEvent( auditor.getSubjectID(), status, auditor.getParamString(ScopeDef.SC_GROUP_MEMBERS, type, id, params))); diff --git a/base/server/cms/src/com/netscape/cms/servlet/base/CMSServlet.java b/base/server/cms/src/com/netscape/cms/servlet/base/CMSServlet.java index 84ac2ea31..56a5f44f7 100644 --- a/base/server/cms/src/com/netscape/cms/servlet/base/CMSServlet.java +++ b/base/server/cms/src/com/netscape/cms/servlet/base/CMSServlet.java @@ -64,9 +64,9 @@ import com.netscape.certsrv.common.ICMSRequest; import com.netscape.certsrv.dbs.certdb.ICertRecord; import com.netscape.certsrv.dbs.certdb.ICertificateRepository; import com.netscape.certsrv.kra.IKeyRecoveryAuthority; -import com.netscape.certsrv.logging.AuditEvent; import com.netscape.certsrv.logging.ILogger; import com.netscape.certsrv.logging.LogCategory; +import com.netscape.certsrv.logging.LogEvent; import com.netscape.certsrv.logging.LogSource; import com.netscape.certsrv.logging.event.AuthFailEvent; import com.netscape.certsrv.logging.event.AuthSuccessEvent; @@ -117,7 +117,7 @@ import netscape.security.x509.X509CertImpl; */ public abstract class CMSServlet extends HttpServlet { - private static Logger signedAuditLogger = SignedAuditLogger.getLogger(); + protected static Logger signedAuditLogger = SignedAuditLogger.getLogger(); private static final long serialVersionUID = -3886300199374147160L; // servlet init params @@ -2026,14 +2026,8 @@ public abstract class CMSServlet extends HttpServlet { signedAuditLogger.log(msg); } - protected void audit(AuditEvent event) { - - String template = event.getMessage(); - Object[] params = event.getParameters(); - - String message = CMS.getLogMessage(template, params); - - audit(message); + protected void audit(LogEvent event) { + signedAuditLogger.log(event); } /** diff --git a/base/server/cms/src/com/netscape/cms/servlet/base/SubsystemService.java b/base/server/cms/src/com/netscape/cms/servlet/base/SubsystemService.java index 40a8791ed..350ae06b1 100644 --- a/base/server/cms/src/com/netscape/cms/servlet/base/SubsystemService.java +++ b/base/server/cms/src/com/netscape/cms/servlet/base/SubsystemService.java @@ -31,10 +31,15 @@ import com.netscape.certsrv.authorization.IAuthzSubsystem; import com.netscape.certsrv.logging.AuditEvent; import com.netscape.certsrv.logging.IAuditor; import com.netscape.certsrv.logging.ILogger; +import com.netscape.certsrv.logging.LogEvent; import com.netscape.certsrv.logging.LogSource; +import com.netscape.cms.logging.Logger; +import com.netscape.cms.logging.SignedAuditLogger; public class SubsystemService extends PKIService { + protected static Logger signedAuditLogger = SignedAuditLogger.getLogger(); + protected IAuthzSubsystem authz = (IAuthzSubsystem) CMS.getSubsystem(CMS.SUBSYSTEM_AUTHZ); protected IAuditor auditor = CMS.getAuditor(); protected ILogger logger = CMS.getLogger(); @@ -82,14 +87,8 @@ public class SubsystemService extends PKIService { getClass().getSimpleName() + ": " + message); } - protected void audit(AuditEvent event) { - - String template = event.getMessage(); - Object[] params = event.getParameters(); - - String message = CMS.getLogMessage(template, params); - - auditor.log(message); + protected void audit(LogEvent event) { + signedAuditLogger.log(event); } public void audit(String message, String scope, String type, String id, Map<String, String> params, String status) { @@ -100,7 +99,7 @@ public class SubsystemService extends PKIService { status, auditor.getParamString(scope, type, id, params)); - auditor.log(auditMessage); + signedAuditLogger.log(auditMessage); } public void auditConfigTokenGeneral(String status, String service, Map<String, String> params, String info) { @@ -112,6 +111,6 @@ public class SubsystemService extends PKIService { service, auditor.getParamString(null, params), info); - auditor.log(msg); + signedAuditLogger.log(msg); } } diff --git a/base/server/cms/src/com/netscape/cms/servlet/cert/RevocationProcessor.java b/base/server/cms/src/com/netscape/cms/servlet/cert/RevocationProcessor.java index 570aea294..e5488d414 100644 --- a/base/server/cms/src/com/netscape/cms/servlet/cert/RevocationProcessor.java +++ b/base/server/cms/src/com/netscape/cms/servlet/cert/RevocationProcessor.java @@ -490,7 +490,7 @@ public class RevocationProcessor extends CertProcessor { serialNumber == null ? ILogger.SIGNED_AUDIT_EMPTY_VALUE : serialNumber.toHexString(), requestType); - auditor.log(auditMessage); + signedAuditLogger.log(auditMessage); } public void auditChangeRequestProcessed(String status) { @@ -506,7 +506,7 @@ public class RevocationProcessor extends CertProcessor { || requestStatus == RequestStatus.REJECTED || requestStatus == RequestStatus.CANCELED)) return; - auditor.log(new CertStatusChangeRequestProcessedEvent( + signedAuditLogger.log(new CertStatusChangeRequestProcessedEvent( auditor.getSubjectID(), status, requestID == null ? ILogger.UNIDENTIFIED : requestID.toString(), diff --git a/base/server/cms/src/com/netscape/cms/servlet/common/CMCOutputTemplate.java b/base/server/cms/src/com/netscape/cms/servlet/common/CMCOutputTemplate.java index 656d3d758..3c133d88d 100644 --- a/base/server/cms/src/com/netscape/cms/servlet/common/CMCOutputTemplate.java +++ b/base/server/cms/src/com/netscape/cms/servlet/common/CMCOutputTemplate.java @@ -76,9 +76,9 @@ import com.netscape.certsrv.base.SessionContext; import com.netscape.certsrv.ca.ICertificateAuthority; import com.netscape.certsrv.dbs.certdb.ICertRecord; import com.netscape.certsrv.dbs.certdb.ICertificateRepository; -import com.netscape.certsrv.logging.AuditEvent; import com.netscape.certsrv.logging.AuditFormat; import com.netscape.certsrv.logging.ILogger; +import com.netscape.certsrv.logging.LogEvent; import com.netscape.certsrv.logging.event.CertStatusChangeRequestProcessedEvent; import com.netscape.certsrv.profile.IEnrollProfile; import com.netscape.certsrv.request.IRequest; @@ -1324,14 +1324,8 @@ public class CMCOutputTemplate { return bpid; } - protected void audit(AuditEvent event) { - - String template = event.getMessage(); - Object[] params = event.getParameters(); - - String message = CMS.getLogMessage(template, params); - - audit(message); + protected void audit(LogEvent event) { + signedAuditLogger.log(event); } protected void audit(String msg) { diff --git a/base/server/cms/src/com/netscape/cms/servlet/connector/ConnectorServlet.java b/base/server/cms/src/com/netscape/cms/servlet/connector/ConnectorServlet.java index a547eec3f..4cdbed7b5 100644 --- a/base/server/cms/src/com/netscape/cms/servlet/connector/ConnectorServlet.java +++ b/base/server/cms/src/com/netscape/cms/servlet/connector/ConnectorServlet.java @@ -51,6 +51,7 @@ import com.netscape.certsrv.connector.IRequestEncoder; import com.netscape.certsrv.logging.AuditEvent; import com.netscape.certsrv.logging.AuditFormat; import com.netscape.certsrv.logging.ILogger; +import com.netscape.certsrv.logging.LogEvent; import com.netscape.certsrv.logging.event.CertRequestProcessedEvent; import com.netscape.certsrv.profile.EProfileException; import com.netscape.certsrv.profile.IEnrollProfile; @@ -59,8 +60,6 @@ import com.netscape.certsrv.request.IRequest; import com.netscape.certsrv.request.IRequestQueue; import com.netscape.certsrv.request.RequestId; import com.netscape.certsrv.request.RequestStatus; -import com.netscape.cms.logging.Logger; -import com.netscape.cms.logging.SignedAuditLogger; import com.netscape.cms.servlet.base.CMSServlet; import com.netscape.cms.servlet.common.CMSRequest; @@ -87,7 +86,6 @@ import netscape.security.x509.X509CertInfo; public class ConnectorServlet extends CMSServlet { private static ILogger mLogger = CMS.getLogger(); - private static Logger signedAuditLogger = SignedAuditLogger.getLogger(); private static final long serialVersionUID = 1221916495803185863L; public static final String INFO = "Connector Servlet"; @@ -990,14 +988,8 @@ public class ConnectorServlet extends CMSServlet { signedAuditLogger.log(msg); } - protected void audit(AuditEvent event) { - - String template = event.getMessage(); - Object[] params = event.getParameters(); - - String message = CMS.getLogMessage(template, params); - - audit(message); + protected void audit(LogEvent event) { + signedAuditLogger.log(event); } /** diff --git a/base/server/cms/src/com/netscape/cms/servlet/processors/CAProcessor.java b/base/server/cms/src/com/netscape/cms/servlet/processors/CAProcessor.java index 79bd7c4c6..4e2a90814 100644 --- a/base/server/cms/src/com/netscape/cms/servlet/processors/CAProcessor.java +++ b/base/server/cms/src/com/netscape/cms/servlet/processors/CAProcessor.java @@ -51,8 +51,8 @@ import com.netscape.certsrv.base.SessionContext; import com.netscape.certsrv.ca.ICertificateAuthority; import com.netscape.certsrv.dbs.certdb.ICertRecord; import com.netscape.certsrv.dbs.certdb.ICertificateRepository; -import com.netscape.certsrv.logging.AuditEvent; import com.netscape.certsrv.logging.ILogger; +import com.netscape.certsrv.logging.LogEvent; import com.netscape.certsrv.logging.event.AuthFailEvent; import com.netscape.certsrv.logging.event.AuthSuccessEvent; import com.netscape.certsrv.logging.event.AuthzFailEvent; @@ -68,8 +68,6 @@ import com.netscape.certsrv.usrgrp.ICertUserLocator; import com.netscape.certsrv.usrgrp.IGroup; import com.netscape.certsrv.usrgrp.IUGSubsystem; import com.netscape.certsrv.util.IStatsSubsystem; -import com.netscape.cms.logging.Logger; -import com.netscape.cms.logging.SignedAuditLogger; import com.netscape.cms.servlet.common.AuthCredentials; import com.netscape.cms.servlet.common.CMSGateway; import com.netscape.cms.servlet.common.ServletUtils; @@ -78,8 +76,6 @@ import netscape.security.x509.X509CertImpl; public class CAProcessor extends Processor { - private static Logger signedAuditLogger = SignedAuditLogger.getLogger(); - public final static String ARG_REQUEST_OWNER = "requestOwner"; public final static String HDR_LANG = "accept-language"; public final static String ARG_PROFILE = "profile"; @@ -891,14 +887,8 @@ public class CAProcessor extends Processor { signedAuditLogger.log(msg); } - protected void audit(AuditEvent event) { - - String template = event.getMessage(); - Object[] params = event.getParameters(); - - String message = CMS.getLogMessage(template, params); - - audit(message); + protected void audit(LogEvent event) { + signedAuditLogger.log(event); } /** diff --git a/base/server/cms/src/com/netscape/cms/servlet/processors/PKIProcessor.java b/base/server/cms/src/com/netscape/cms/servlet/processors/PKIProcessor.java index fb4389528..9d8f0bf20 100644 --- a/base/server/cms/src/com/netscape/cms/servlet/processors/PKIProcessor.java +++ b/base/server/cms/src/com/netscape/cms/servlet/processors/PKIProcessor.java @@ -30,9 +30,9 @@ import com.netscape.certsrv.base.EBaseException; import com.netscape.certsrv.base.IArgBlock; import com.netscape.certsrv.base.SessionContext; import com.netscape.certsrv.common.ICMSRequest; -import com.netscape.certsrv.logging.AuditEvent; import com.netscape.certsrv.logging.ILogger; import com.netscape.certsrv.logging.LogCategory; +import com.netscape.certsrv.logging.LogEvent; import com.netscape.certsrv.request.IRequest; import com.netscape.cms.logging.Logger; import com.netscape.cms.logging.SignedAuditLogger; @@ -309,14 +309,8 @@ public class PKIProcessor implements IPKIProcessor { signedAuditLogger.log(msg); } - protected void audit(AuditEvent event) { - - String template = event.getMessage(); - Object[] params = event.getParameters(); - - String message = CMS.getLogMessage(template, params); - - audit(message); + protected void audit(LogEvent event) { + signedAuditLogger.log(event); } /** diff --git a/base/server/cms/src/com/netscape/cms/servlet/processors/Processor.java b/base/server/cms/src/com/netscape/cms/servlet/processors/Processor.java index 2648a4bc4..40a77bd1b 100644 --- a/base/server/cms/src/com/netscape/cms/servlet/processors/Processor.java +++ b/base/server/cms/src/com/netscape/cms/servlet/processors/Processor.java @@ -13,9 +13,13 @@ import com.netscape.certsrv.base.EPropertyNotFound; import com.netscape.certsrv.logging.IAuditor; import com.netscape.certsrv.logging.ILogger; import com.netscape.certsrv.logging.LogSource; +import com.netscape.cms.logging.Logger; +import com.netscape.cms.logging.SignedAuditLogger; public class Processor { + protected static Logger signedAuditLogger = SignedAuditLogger.getLogger(); + protected ILogger logger = CMS.getLogger(); protected IAuditor auditor = CMS.getAuditor(); diff --git a/base/server/cms/src/org/dogtagpki/server/PKIServerSocketListener.java b/base/server/cms/src/org/dogtagpki/server/PKIServerSocketListener.java index d74231755..596902f98 100644 --- a/base/server/cms/src/org/dogtagpki/server/PKIServerSocketListener.java +++ b/base/server/cms/src/org/dogtagpki/server/PKIServerSocketListener.java @@ -35,11 +35,12 @@ import org.slf4j.LoggerFactory; import com.netscape.certsrv.apps.CMS; import com.netscape.certsrv.logging.AuditEvent; -import com.netscape.certsrv.logging.IAuditor; +import com.netscape.cms.logging.SignedAuditLogger; public class PKIServerSocketListener implements SSLSocketListener { private static Logger logger = LoggerFactory.getLogger(PKIServerSocketListener.class); + private static SignedAuditLogger signedAuditLogger = SignedAuditLogger.getLogger(); /** * The socketInfos map is a storage for socket information that may not be available @@ -74,8 +75,6 @@ public class PKIServerSocketListener implements SSLSocketListener { logger.debug(" - server: " + serverIP); logger.debug(" - subject: " + subjectID); - IAuditor auditor = CMS.getAuditor(); - String auditMessage = CMS.getLogMessage( AuditEvent.ACCESS_SESSION_TERMINATED, clientIP, @@ -83,7 +82,7 @@ public class PKIServerSocketListener implements SSLSocketListener { subjectID, reason); - auditor.log(auditMessage); + signedAuditLogger.log(auditMessage); } catch (Exception e) { logger.error(e.getMessage(), e); @@ -135,8 +134,6 @@ public class PKIServerSocketListener implements SSLSocketListener { logger.debug(" - server: " + serverIP); logger.debug(" - subject: " + subjectID); - IAuditor auditor = CMS.getAuditor(); - String auditMessage = CMS.getLogMessage( eventType, clientIP, @@ -144,7 +141,7 @@ public class PKIServerSocketListener implements SSLSocketListener { subjectID, reason); - auditor.log(auditMessage); + signedAuditLogger.log(auditMessage); } catch (Exception e) { logger.error(e.getMessage(), e); @@ -178,15 +175,13 @@ public class PKIServerSocketListener implements SSLSocketListener { info.put("subjectID", subjectID); socketInfos.put(socket, info); - IAuditor auditor = CMS.getAuditor(); - String auditMessage = CMS.getLogMessage( AuditEvent.ACCESS_SESSION_ESTABLISH_SUCCESS, clientIP, serverIP, subjectID); - auditor.log(auditMessage); + signedAuditLogger.log(auditMessage); } catch (Exception e) { logger.error(e.getMessage(), e); diff --git a/base/server/cms/src/org/dogtagpki/server/rest/ACLInterceptor.java b/base/server/cms/src/org/dogtagpki/server/rest/ACLInterceptor.java index 3d2ee5e28..ca19ef188 100644 --- a/base/server/cms/src/org/dogtagpki/server/rest/ACLInterceptor.java +++ b/base/server/cms/src/org/dogtagpki/server/rest/ACLInterceptor.java @@ -45,8 +45,8 @@ import com.netscape.certsrv.authorization.EAuthzUnknownRealm; import com.netscape.certsrv.authorization.IAuthzSubsystem; import com.netscape.certsrv.base.EBaseException; import com.netscape.certsrv.base.ForbiddenException; -import com.netscape.certsrv.logging.AuditEvent; import com.netscape.certsrv.logging.ILogger; +import com.netscape.certsrv.logging.LogEvent; import com.netscape.certsrv.logging.event.AuthzFailEvent; import com.netscape.certsrv.logging.event.AuthzSuccessEvent; import com.netscape.cms.logging.Logger; @@ -336,13 +336,7 @@ public class ACLInterceptor implements ContainerRequestFilter { signedAuditLogger.log(msg); } - protected void audit(AuditEvent event) { - - String template = event.getMessage(); - Object[] params = event.getParameters(); - - String message = CMS.getLogMessage(template, params); - - audit(message); + protected void audit(LogEvent event) { + signedAuditLogger.log(event); } } diff --git a/base/server/cms/src/org/dogtagpki/server/rest/AuditService.java b/base/server/cms/src/org/dogtagpki/server/rest/AuditService.java index 7c296517b..d28a917f3 100644 --- a/base/server/cms/src/org/dogtagpki/server/rest/AuditService.java +++ b/base/server/cms/src/org/dogtagpki/server/rest/AuditService.java @@ -412,7 +412,7 @@ public class AuditService extends SubsystemService implements AuditResource { */ public void auditTPSConfigSignedAudit(String status, Map<String, String> params) { - auditor.log(new ConfigSignedAuditEvent( + signedAuditLogger.log(new ConfigSignedAuditEvent( servletRequest.getUserPrincipal().getName(), status, auditor.getParamString(null, params))); diff --git a/base/server/cms/src/org/dogtagpki/server/rest/GroupService.java b/base/server/cms/src/org/dogtagpki/server/rest/GroupService.java index 6292cf800..4274668a2 100644 --- a/base/server/cms/src/org/dogtagpki/server/rest/GroupService.java +++ b/base/server/cms/src/org/dogtagpki/server/rest/GroupService.java @@ -435,7 +435,7 @@ public class GroupService extends SubsystemService implements GroupResource { if (auditor == null) return; - auditor.log(new ConfigRoleEvent( + signedAuditLogger.log(new ConfigRoleEvent( auditor.getSubjectID(), status, auditor.getParamString(ScopeDef.SC_GROUPS, type, id, params))); diff --git a/base/server/cms/src/org/dogtagpki/server/rest/UserService.java b/base/server/cms/src/org/dogtagpki/server/rest/UserService.java index ec690d6a0..b261ea9ae 100644 --- a/base/server/cms/src/org/dogtagpki/server/rest/UserService.java +++ b/base/server/cms/src/org/dogtagpki/server/rest/UserService.java @@ -1230,7 +1230,7 @@ public class UserService extends SubsystemService implements UserResource { if (auditor == null) return; - auditor.log(new ConfigRoleEvent( + signedAuditLogger.log(new ConfigRoleEvent( auditor.getSubjectID(), status, auditor.getParamString(ScopeDef.SC_USERS, type, id, params))); @@ -1240,7 +1240,7 @@ public class UserService extends SubsystemService implements UserResource { if (auditor == null) return; - auditor.log(new ConfigRoleEvent( + signedAuditLogger.log(new ConfigRoleEvent( auditor.getSubjectID(), status, auditor.getParamString(ScopeDef.SC_USER_CERTS, type, id, params))); |