Audit log does not include remoteUser

26 views

Skip to first unread message

David Capwell

unread,

Aug 6, 2019, 1:16:50 PM8/6/19

to dropwizard-user

This is a continuation, but for the remoteUser field (see https://groups.google.com/forum/#!topic/dropwizard-user/OzwpS4mHOOI for other fields).

In dropwizard, the auth is at the Jersey layer, but the audit log is at the servlet layer, so servlet auth is disabled

setAuthentication(Authentication.NOT_CHECKED);

See org.eclipse.jetty.server.Request#recycle()

For this reason, the jersey layer may know the actual user making the request, but the audit logs won't record this, since jetty thinks auth is disabled so returns null to ch.qos.logback.access.spi.AccessEvent#getRemoteUser; so it will be skipped from the log.

Is there any way to get the audit log to learn about the user?

Thanks for your help!

David Capwell

unread,

Aug 6, 2019, 1:28:32 PM8/6/19

to dropwizard-user

Here is my yaml

server:
  requestLog:
    appenders:
    - type: console
      layout:
        type: access-json
        timestampFormat: "yyyy-MM-dd'T'HH:mm:ss.SSSZ"
        customFieldNames:
          requestTime: requestTimeMillis
          contentLength: responseContentLength
        includes:
          - 'remoteAddress'
          - 'remoteUser'
          - 'requestTime'
          - 'requestUri'
          - 'statusCode'
          - 'method'
          - 'protocol'
          - 'contentLength'
          - 'userAgent'
          - 'timestamp'
          - 'requestParameters'
          - 'requestContent'
          - 'responseContent'

Reply all

Reply to author

Forward

0 new messages