Return-Path: X-Original-To: apmail-hbase-issues-archive@www.apache.org Delivered-To: apmail-hbase-issues-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id EE1DD9156 for ; Thu, 4 Oct 2012 21:59:47 +0000 (UTC) Received: (qmail 42821 invoked by uid 500); 4 Oct 2012 21:59:47 -0000 Delivered-To: apmail-hbase-issues-archive@hbase.apache.org Received: (qmail 42684 invoked by uid 500); 4 Oct 2012 21:59:47 -0000 Mailing-List: contact issues-help@hbase.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Delivered-To: mailing list issues@hbase.apache.org Received: (qmail 42675 invoked by uid 99); 4 Oct 2012 21:59:47 -0000 Received: from arcas.apache.org (HELO arcas.apache.org) (140.211.11.28) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 04 Oct 2012 21:59:47 +0000 Date: Fri, 5 Oct 2012 08:59:47 +1100 (NCT) From: "Matteo Bertozzi (JIRA)" To: issues@hbase.apache.org Message-ID: <535855990.2542.1349387987721.JavaMail.jiratomcat@arcas> In-Reply-To: <1515575935.9974.1344980678128.JavaMail.jiratomcat@arcas> Subject: [jira] [Updated] (HBASE-6585) Audit log messages should contain info about the higher level operation being executed MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 [ https://issues.apache.org/jira/browse/HBASE-6585?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Matteo Bertozzi updated HBASE-6585: ----------------------------------- Attachment: HBASE-6585-v1.patch patch rebased, any other comments? > Audit log messages should contain info about the higher level operation being executed > -------------------------------------------------------------------------------------- > > Key: HBASE-6585 > URL: https://issues.apache.org/jira/browse/HBASE-6585 > Project: HBase > Issue Type: Improvement > Affects Versions: 0.96.0 > Reporter: Marcelo Vanzin > Assignee: Matteo Bertozzi > Priority: Minor > Attachments: HBASE-6585-v0.patch, HBASE-6585-v1.patch > > > Currently, audit log messages contains the "action" for which access was checked; this is one of READ, WRITE, CREATE or ADMIN. > These give very little information to the person digging into the logs about what was done, though. You can't ask "who deleted rows from table x?", because "delete" is translated to a "WRITE" action. > It would be nice if the audit logs contained the higher-level operation, either replacing or in addition to the RWCA information. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira