https://bz.apache.org/bugzilla/show_bug.cgi?id=63545
Bug ID: 63545
Summary: enhancement - add a new pattern attribute for logging
user roles
Product: Tomcat 9
Version: 9.0.x
Hardware: All
OS: All
Status: NEW
Severity: enhancement
Priority: P2
Component: Connectors
Assignee: dev@tomcat.apache.org
Reporter: eugene.ad...@gmail.com
Target Milestone: -----
The Access Log Valve already has a set of possible pattern attributes that
covers most of production server needs.
However if we can log the user name since the beginning of the project, we
still can't log his role(s). I understand that being inspired from Apache httpd
where such a notion doesn't exist, it has not been implemented.
Implementing this new pattern attribute would :
-log roles in the access log
-make debug easier for problems related to user roles
-track more easily user role changing, which is required for applications that
implement role delegation (typically when a user goes on vacation and is
replaced temporarily by someone having smaller rights during the rest of the
year)
I believe that production needs and Tomcat code have changed consequently since
bugid 3588, and that Tomcat is almost ready to cover this feature without much
effort.
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org
