This is for the new REST interface.
Suggested: 10.2.2
Per Dogtag 10.2.3 Triage meeting of 09/24/2014 - proposed Milestone: 10.2.2
Per 10.2.2 Triage meeting of 02/24/2015: 10.2.3
Please provide link to the design of this feature so I have a better sense of what it does and what needs to be audited. thanks.
looks like auditing for the authentication and authorization of the REST API are entirely missing, I"m changing this ticket to include that as well.
first part pushed to master.
commit ccf2eb507471a9f19a1768befadeff404c96635e Author: Christina Fu cfu@redhat.com Date: Thu May 7 12:14:19 2015 -0700
Ticket 1160 audit logging needed: REST API auth/authz; kra for getKeyInfo - (1) REST API auth/authz - this patch addresses the first part of thi ticket where auditing is completely missing for authentication and authorization at the REST interface.
2nd part pushed to master: commit c0d14140aca982ac637d5fd34f1c3ddb23836867 This patch addresses: (2) audit needed for getKeyInfo, the 2nd part of this ticket where the key services are missing some auditing.
new ticket created to cover the desirable upgrade script: https://fedorahosted.org/pki/ticket/1382 KRA: upgrade script maybe needed for CS.cfg to add new audit events added in ticket 1160
Metadata Update from @vakwetu: - Issue assigned to cfu - Issue set to the milestone: 10.2.4
Dogtag PKI is moving from Pagure issues to GitHub issues. This means that existing or new issues will be reported and tracked through Dogtag PKI's GitHub Issue tracker.
This issue has been cloned to GitHub and is available here: https://github.com/dogtagpki/pki/issues/1723
If you want to receive further updates on the issue, please navigate to the GitHub issue and click on Subscribe button.
Subscribe
Thank you for understanding, and we apologize for any inconvenience.
Login to comment on this ticket.