hbase-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Andrew Purtell (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (HBASE-6585) Audit log messages should contain info about the higher level operation being executed
Date Wed, 05 Dec 2012 06:38:59 GMT

    [ https://issues.apache.org/jira/browse/HBASE-6585?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13510306#comment-13510306
] 

Andrew Purtell commented on HBASE-6585:
---------------------------------------

+1

                
> Audit log messages should contain info about the higher level operation being executed
> --------------------------------------------------------------------------------------
>
>                 Key: HBASE-6585
>                 URL: https://issues.apache.org/jira/browse/HBASE-6585
>             Project: HBase
>          Issue Type: Improvement
>          Components: security
>    Affects Versions: 0.96.0
>            Reporter: Marcelo Vanzin
>            Assignee: Matteo Bertozzi
>            Priority: Minor
>              Labels: acl
>             Fix For: 0.96.0, 0.94.4
>
>         Attachments: HBASE-6585-v0.patch, HBASE-6585-v1.patch
>
>
> Currently, audit log messages contains the "action" for which access was checked; this
is one of READ, WRITE, CREATE or ADMIN.
> These give very little information to the person digging into the logs about what was
done, though. You can't ask "who deleted rows from table x?", because "delete" is translated
to a "WRITE" action.
> It would be nice if the audit logs contained the higher-level operation, either replacing
or in addition to the RWCA information.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

Mime
View raw message