Hi all,
For the purpose of making the WSO2 products GDPR compliance, we need to
make sure that all the instances of a username is removed from the system
upon the request of an end user. This may include database tables, Log
files, registry, analytics etc. In order to address the respective area
related to Log files I have implemented a custom tool to replace all the
occurrences of a username in the log files to support this compliance [1].
The system administrator can run this tool with the required inputs (e.g.
username, password, tenant domain and log file directory path etc) and the
tool will process all the log files and replace all the occurrences of the
username with a pseudonym.
The log processing tool works with a regex-pattern match approach where all
the identifiable patterns of username occurrences can be configured from an
external configuration file. Sample pattern configuration for a possible
username occurrence is as follows.
<pattern key="pattern1">
<detectPattern>(.)*${userstoreDomain}(/{0}|/{1})${username}@
${tenantDomain}(.)*</detectPattern>
<replacePattern>${username}</replacePattern>
</pattern>
All the log files available in the configured log file directory path will
be processed line by line and will be compared against all the configured
patterns in the pattern configuration file. The detectPattern will detect
the lines where the configured pattern matches and all the occurrences of
the replacePattern in that specific line will be replaced with a pseudonym
for the actual name. The replaced filenames and corresponding line numbers
will be included in a report in PDF format for later references.
As for the initial stage of the GDPR compliance log processing tool only
the exactly identified(where full qualified name of user is included) logs
will be replaced. Logs where only the username is present, i.e. without
tenant domain or userstore domain, is not replaced. These possible matches
will be included in the generated report with the corresponding line
numbers.
[1]
https://github.com/JKAUSHALYA/gdpr-compliance-tool/tree/master/components/org.wso2.carbon.privacy.forgetme.logs
Thanks,
Sathya
--
Sathya Bandara
Software Engineer
WSO2 Inc. http://wso2.com
Mobile: (+94) 715 360 421 <+94%2071%20411%205032>
<+94%2071%20411%205032>
_______________________________________________
Architecture mailing list
[email protected]
https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
