[ https://issues.apache.org/jira/browse/CASSANDRA-19669?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Francisco Guerrero updated CASSANDRA-19669: ------------------------------------------- Reviewers: Bernardo Botella, Francisco Guerrero Status: Review In Progress (was: Patch Available) > Audit Log entries are missing identity for mTLS connections > ----------------------------------------------------------- > > Key: CASSANDRA-19669 > URL: https://issues.apache.org/jira/browse/CASSANDRA-19669 > Project: Cassandra > Issue Type: Bug > Components: Local/Config > Reporter: Francisco Guerrero > Assignee: Francisco Guerrero > Priority: Normal > Fix For: 5.1 > > Time Spent: 50m > Remaining Estimate: 0h > > Audit log entries are missing the {{IDENTITY}} when an mTLS connection is > established. Currently, the client state is captured as part of the audit log > entries, however the additional metadata for the authenticated user does not > get propagated to the entry. For the mTLS connections, this means that the > identity information is not included to the log entry details. > Additionally, when a TLS connection is terminated during handshake (say a > client is using an expired certificate) the error is not propagated to the > audit log failure attempts. -- This message was sent by Atlassian Jira (v8.20.10#820010) --------------------------------------------------------------------- To unsubscribe, e-mail: commits-unsubscr...@cassandra.apache.org For additional commands, e-mail: commits-h...@cassandra.apache.org