Jean-Baptiste Onofré created KARAF-4414: -------------------------------------------
Summary: Add LogAuditLoginModule and replace FileAuditLoginModule by default Key: KARAF-4414 URL: https://issues.apache.org/jira/browse/KARAF-4414 Project: Karaf Issue Type: Improvement Components: karaf-security Reporter: Jean-Baptiste Onofré Assignee: Jean-Baptiste Onofré Fix For: 4.1.0, 4.0.5 Currently, Karaf enabled the FileAuditLoginModule by default. This login module audit all security actions (logon, logout, etc) performed by users. However, this is a simple file (populated by a StringWriter), so it always grows up, never rotate and we can't limit the size. I've implemented a new LogAuditLoginModule that use slf4j to log the security actions. We should use this login module by default (instead of the FileAuditLoginModule, using a specific appender in etc/org.ops4j.pax.logging.cfg). -- This message was sent by Atlassian JIRA (v6.3.4#6332)