[MNT-10070] Provide audit filter capabilities for audit applications Created: 29-Nov-13  Updated: 27-May-15  Resolved: 24-Sep-14

Status: Closed
Project: Service Packs and Hot Fixes
Component/s: Auditing
Affects Version/s: 4.1.6
Fix Version/s: 4.1.10

Type: Service Pack Request
Reporter: Marco Mancuso [X] (Inactive) Assignee: Closed Bugs
Resolution: Fixed Votes: 1
Labels: None
Remaining Estimate: 0 minutes
Time Spent: 3 days, 6 hours, 30 minutes
Original Estimate: Not Specified

Attachments: PDF File Knowledge Article.pdf    
Issue Links:
Related
relates to MNT-1880 Need clarification of audit filter sy... Closed
is related to by MNT-10812 Enormous SQL SELECT load when doing a... Closed
Bug Priority:
Category 3
ACT Numbers:

00162456

Build Location: https://releases.alfresco.com/Enterprise-4.1/4.1.10/build-00030/

 Description   

Currently, audit filters reject data provided by audit data producers (Inbound Audit Values) as described in the attached article.

This capability is insufficient for any Alfresco applications that makes more than just casual use of Auditing. In a scenario where multiple Audit Applications consume the data from the same data producer (alfresco-api or alfresco-access), filtering inbound data is no longer practical as the filter necessary for one application may suppress data relevant to the second application. On the other hand, having no filter at all can lead to excessive data collected by Audit Applications and introduce significant scalability issues.

Customers are requesting that the following enhancement(s) or sensible sub-sets thereof be considered for future product development:

1) Support of inbound filters specific to an Audit Application (after path mapping has occurred)
2) Support of outbound filters specific to an Audit Application (i.e. reject audit entries based on calculated / extracted data)
3) Support of registrable, custom filter implementations (in addition to sole the simple property-based filter currently in place)
4) Support of aggregation-capable data extractors (audit data extractor with access to multiple inbound values)

These should help customers / developers to improve audit-based solutions to keep unnecessary data from being committed to the database while removing the potential for side-effects by only filtering on inbound values from data producers.



 Comments   
Comment by Derek Hulley [X] (Inactive) [ 28-Mar-14 ]

I think that we have a bug here. The audit applications should not veto data that might be required by other applications.

Comment by Derek Hulley [X] (Inactive) [ 08-Sep-14 ]

Indeed, I would have expected to get the same inbound data for each of the applications app1, app2 and app3. This can be neatly demonstrated using a test rather than manually. Please set up the test as you describe and ensure that each application gets to audit the same data.

Generated at Sat Jul 11 05:42:50 BST 2020 using JIRA 7.6.3#76005-sha1:8a4e38d34af948780dbf52044e7aafb13a7cae58.