Jean-Baptiste Onofré created KARAF-4414:
-------------------------------------------
Summary: Add LogAuditLoginModule and replace FileAuditLoginModule
by default
Key: KARAF-4414
URL: https://issues.apache.org/jira/browse/KARAF-4414
Project: Karaf
Issue Type: Improvement
Components: karaf-security
Reporter: Jean-Baptiste Onofré
Assignee: Jean-Baptiste Onofré
Fix For: 4.1.0, 4.0.5
Currently, Karaf enabled the FileAuditLoginModule by default. This login module
audit all security actions (logon, logout, etc) performed by users.
However, this is a simple file (populated by a StringWriter), so it always
grows up, never rotate and we can't limit the size.
I've implemented a new LogAuditLoginModule that use slf4j to log the security
actions.
We should use this login module by default (instead of the
FileAuditLoginModule, using a specific appender in
etc/org.ops4j.pax.logging.cfg).
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
