Hi all We have a requirement to log any security changes to an audit table, being those that control access to a particular layer, for example add/delete/change:
- Users - Usergroups - Roles - Data (workspace and layer rules) - Services (e.g. WFS transactions) Even with verbose logging, there is not enough logging in geoserver.log, and we prefer to maintain a standard build, so I did not pursue this further. I could periodically monitor the configuration via REST for any changes, but how often? Another idea is to use linux filesytem audit tools (auditd) to monitor the individual XML config files but I don't know if that can trigger a process or log the actual changes/diffs to the config files. Lastly, based on https://github.com/rvoicilas/inotify-tools/wiki, writing diffs of the XML config files should be possible. Has anyone else tackled a similar requirement? Do you have any other suggestions? Thanks Peter
_______________________________________________ Geoserver-users mailing list Please make sure you read the following two resources before posting to this list: - Earning your support instead of buying it, but Ian Turton: http://www.ianturton.com/talks/foss4g.html#/ - The GeoServer user list posting guidelines: http://geoserver.org/comm/userlist-guidelines.html If you want to request a feature or an improvement, also see this: https://github.com/geoserver/geoserver/wiki/Successfully-requesting-and-integrating-new-features-and-improvements-in-GeoServer Geoserver-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/geoserver-users
