[JENKINS-21402] Log/notify ACL grant or deny events - Jenkins Jira

XML

Word

Printable

Details

Type: New Feature
Status: Open (View Workflow)
Priority: Major
Resolution: Unresolved
Component/s: core
Labels:
- api
- logging
- security

Similar Issues:

Show

Description

SecurityListener should be notified when an ACL check is denied. If it can be done efficiently, it should also be notified when an ACL check is granted. This would allow a listener to determine which permissions are being used by whom on what.

Attachments

Issue Links

depends on

JENKINS-20999 Extension point for tracking login-related events

Resolved

Activity

Jesse Glick added a comment - 2015-02-19 14:27

I.e., logging when a AccessDeniedException is thrown (mainly from ACL.checkPermission), and/or caught at top level (ExceptionTranslationFilter.handleException).

Jesse Glick added a comment - 2015-02-19 14:27 I.e., logging when a AccessDeniedException is thrown (mainly from ACL.checkPermission ), and/or caught at top level ( ExceptionTranslationFilter.handleException ).

People

Assignee:: Unassigned

Reporter:: Jesse Glick

Votes:: 1 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 2014-01-15 20:10

Updated:: 2015-02-19 14:35