realm based security and logging

[squatty]

I'm hoping this is a simple one- I want to use the realm based security
mechanism in tomcat, but my ops team is unhappy with the silent failures for
login and attempts to access protected resources.  I set the debug=99
attribute when defining my DataSourceRealm.  Unfortunately, the only log
messages I see are for a successful login or an usuccessful login with an
existing user:

DataSourceRealm[/support]: Username admin NOT successfully authenticated
DataSourceRealm[/support]: Username admin successfully authenticated

Otherwise I don't see any log output, for example a user that does't exist
attempting to login, or a logged in user attempting to access a resource for
which he doesn't have permission.  Does anyone know how to turn on this
logging? 

tia



--
View this message in context: 
http://www.nabble.com/realm-based-security-and-logging-t1804813.html#a4918752
Sent from the Tomcat - User forum at Nabble.com.


-
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: realm based security and logging

[squatty]

OK- so I figured out i can crank up the logging level to DEBUG and see the
kind of logging I want, although it's alot more than I wanted to see.  OPS
would prefer user admin attempting to access protected resource
/protected/protected.jsp or something along those lines, as a WARN level
message.  

So I'd still appreciate any advice from anyone who's dealt with this problem
before? 
--
View this message in context: 
http://www.nabble.com/realm-based-security-and-logging-t1804813.html#a4918899
Sent from the Tomcat - User forum at Nabble.com.


-
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]