[
https://issues.apache.org/jira/browse/KAFKA-2162?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14624158#comment-14624158
]
Gwen Shapira commented on KAFKA-2162:
-------------------------------------
I like starting with requirements.
So I asked few security folks I work with what would they want to see in their
audit log (after I explained that logging every single message is unfeasible...)
Here's what I got from them:
* Authorization failures / denies
* Ticket renewals for Kerberos (is it also a thing for SSL?)
* Session starts for SSL (and in other places where sessions apply.
The first item can be done with the authorizer, but I can't see how the
authorizer will log ticket renewals and session expiration. Any thoughts?
> Kafka Auditing functionality
> ----------------------------
>
> Key: KAFKA-2162
> URL: https://issues.apache.org/jira/browse/KAFKA-2162
> Project: Kafka
> Issue Type: Bug
> Reporter: Sriharsha Chintalapani
> Assignee: Parth Brahmbhatt
>
> During Kafka authorization discussion thread . There was concerns raised
> about not having Auditing. Auditing is important functionality but its not
> part of authorizer. This jira will track adding audit functionality to kafka.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
