Alex Rudyy created QPID-8124:

             Summary: [Broker-J][REST] Sucessfully authenticated user is 
reported as <<UNKNOWN>> in ACL operational logs when checking access to 
                 Key: QPID-8124
             Project: Qpid
          Issue Type: Bug
          Components: Broker-J
    Affects Versions: qpid-java-broker-7.0.1, qpid-java-broker-7.0.0, 
            Reporter: Alex Rudyy

When user is successfully authenticated, the user subject of operational log 
for checking management access is reported as <<UNKNOWN>> with both Allowed and 
Denied outcomes:
INFO  [qtp1675859208-228] (q.m.a.denied) - <<UNKNOWN>> ACL-1002 : Denied : 
Access Management 
INFO  [qtp1675859208-64] (q.m.a.allowed) - <<UNKNOWN>> ACL-1001 : Allowed : 
Access Management 
INFO  [qtp1675859208-64] ( - [mng:nyXoe7Io(admin@/] 
MNG-1007 : Open : User admin

As result, it is impossible to identify the principal name of authenticated 
user in operational log when access is denied. 

Thought, it is possible to get the principal name for "allowed" outcome by 
looking into the following logs from the same thread, it would be beneficial to 
print the real principal information in the log for Allowed outcome.

This message was sent by Atlassian JIRA

To unsubscribe, e-mail:
For additional commands, e-mail:

Reply via email to