Uploaded image for project: 'Service Packs and Hot Fixes'
  1. Service Packs and Hot Fixes
  2. MNT-6963

audit logging is provided for modification of an LDAP user, but not for synchronization

    Details

    • Type: Service Pack Request
    • Status: Closed (View Workflow)
    • Resolution: Fixed
    • Affects Version/s: 3.4.7
    • Fix Version/s: 4.1.5
    • Component/s: Auditing
    • Labels:
      None

      Description

      Description

      Alfresco will log audit information for modification of an LDAP user, but not for synchronization of any LDAP users.

      If extra audit configuration XML files are needed for that, please provide documentation on what the users need to do.

      Steps to reproduce

      1. alfresco-global.properties:
      add ldap sync properties (see my attached jmxdump)
      audit.enabled=true
      audit.alfresco-access.enabled=true
      audit.alfresco-access.sub-actions.enabled=true

      2. add to./webapps/alfresco/WEB-INF/classes/log4j.properties:
      log4j.logger.org.alfresco.repo.audit.inbound=DEBUG
      log4j.logger.org.alfresco.repo.audit.AuditComponentImpl=DEBUG
      log4j.logger.org.alfresco.repo.audit.PropertyAuditFilter=DEBUG

      3. In shared/classes/alfresco/extension/audit:
      cp alfresco-audit-example-extractors.xml.sample alfresco-audit-example-extractors.xml
      cp alfresco-audit-example-login.xml.sample alfresco-audit-example-login.xml

      4. start alfresco

      5. check log
      There enormous amount of audit info, but no audit for ldap synch.

      6. Try LDAP user login - get the audit info.

      /alfresco-api/post/NodeService/getProperties/args/nodeRef=workspace://SpacesStore/4f2f80e0-9ed7-4c15-8092-4af5a85951da
      /alfresco-api/post/NodeService/getProperties/result={{http://www.alfresco.org/model/content/1.0}name=4f2f80e0-9ed7-4c15-8092-4af5a85951da,

      {http://www.alfresco.org/model/system/1.0}

      node-dbid=635,

      {http://www.alfresco.org/model/system/1.0}

      store-identifier=SpacesStore,

      {http://www.alfresco.org/model/content/1.0}

      homeFolderProvider=largeHomeFolderProvider,

      {http://www.alfresco.org/model/content/1.0}

      userName=fred,

      {http://www.alfresco.org/model/content/1.0}

      sizeCurrent=0,

      {http://www.alfresco.org/model/content/1.0}

      owner=fred,

      {http://www.alfresco.org/model/system/1.0}

      node-uuid=4f2f80e0-9ed7-4c15-8092-4af5a85951da,

      {http://www.alfresco.org/model/system/1.0}

      store-protocol=workspace,

      {http://www.alfresco.org/model/content/1.0}

      homeFolder=workspace://SpacesStore/3d10dea1-f91b-4d67-8b0b-bed1ba414937,

      {http://www.alfresco.org/model/content/1.0}

      firstName=fred}

      7. Try modifying an LDAP user
      eg. adding a quota to fred. see audit info.

      (see attached alfresco.log-)

      Expected Behaviour

      The ldap sync is modifying the user, so that should be audit logged too.

      Observed Behaviour

      No audit info for the ldap synch is provided.

      Environment - Reproduction

      Reproduced with Alfresco 3.4.7 on Ubuntu synchronizing with Windows 2003 AD.

        Attachments

          Structure

            Activity

              People

              • Assignee:
                closedbugs Closed Bugs
                Reporter:
                jsinha Jay Sinha [X] (Inactive)
              • Votes:
                0 Vote for this issue
                Watchers:
                5 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0 minutes
                  0m
                  Logged:
                  Time Spent - 1 day, 3 hours
                  1d 3h

                    Structure Helper Panel