Jean-Baptiste Onofré created KARAF-4414:
-------------------------------------------
Summary: Add LogAuditLoginModule and replace FileAuditLoginModule by default
Key: KARAF-4414
URL: https://issues.apache.org/jira/browse/KARAF-4414
Project: Karaf
Issue Type: Improvement
Components: karaf-security
Reporter: Jean-Baptiste Onofré
Assignee: Jean-Baptiste Onofré
Fix For: 4.1.0, 4.0.5
Currently, Karaf enabled the FileAuditLoginModule by default. This login module audit all
security actions (logon, logout, etc) performed by users.
However, this is a simple file (populated by a StringWriter), so it always grows up, never
rotate and we can't limit the size.
I've implemented a new LogAuditLoginModule that use slf4j to log the security actions.
We should use this login module by default (instead of the FileAuditLoginModule, using a specific
appender in etc/org.ops4j.pax.logging.cfg).
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
|