Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-21402

Log/notify ACL grant or deny events

    Details

    • Similar Issues:

      Description

      SecurityListener should be notified when an ACL check is denied. If it can be done efficiently, it should also be notified when an ACL check is granted. This would allow a listener to determine which permissions are being used by whom on what.

        Attachments

          Issue Links

            Activity

            jglick Jesse Glick created issue -
            jglick Jesse Glick made changes -
            Field Original Value New Value
            Link This issue is related to JENKINS-20999 [ JENKINS-20999 ]
            Hide
            jglick Jesse Glick added a comment -

            I.e., logging when a AccessDeniedException is thrown (mainly from ACL.checkPermission), and/or caught at top level (ExceptionTranslationFilter.handleException).

            Show
            jglick Jesse Glick added a comment - I.e., logging when a AccessDeniedException is thrown (mainly from ACL.checkPermission ), and/or caught at top level ( ExceptionTranslationFilter.handleException ).
            jglick Jesse Glick made changes -
            Link This issue depends on JENKINS-20999 [ JENKINS-20999 ]
            jglick Jesse Glick made changes -
            Link This issue is related to JENKINS-20999 [ JENKINS-20999 ]
            jglick Jesse Glick made changes -
            Labels logging security api logging security
            rtyler R. Tyler Croy made changes -
            Workflow JNJira [ 153266 ] JNJira + In-Review [ 178474 ]

              People

              • Assignee:
                Unassigned
                Reporter:
                jglick Jesse Glick
              • Votes:
                1 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated: