OpenStack Identity (keystone)

add project id to initiator data for auditing

Bug #1428945 reported by Steve Martinelli on 2015-03-06

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	OpenStack Identity (keystone)	Fix Released	Low	Steve Martinelli	OpenStack Identity (keystone) 2015.1.0 "kilo"

Bug Description

as seen below, for a CADF notification, the initiator data contains the user id

"initiator": {
            "typeURI": "service/security/account/user",
            "host": {
                "agent": "curl/7.22.0(x86_64-pc-linux-gnu)",
                "address": "127.0.0.1"
            },
            "id": "c9f76d3c31e142af9291de2935bde98a"
        },

It would also be helpful to add the id of the scope (project or domain) that the user performed the operation on.

I'm not sure what the best way to represent this data is, but it seems relevant to add.

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2015-03-09: Fix proposed to keystone (master)

Fix proposed to branch: master
Review: https://review.openstack.org/162547

Changed in keystone:
assignee:	nobody → Steve Martinelli (stevemar)
status:	New → In Progress

Steve Martinelli (stevemar) on 2015-03-11

Changed in keystone:
importance:	Undecided → Low
milestone:	none → kilo-3

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2015-03-12: Fix merged to keystone (master)

Reviewed: https://review.openstack.org/162547
Committed: https://git.openstack.org/cgit/openstack/keystone/commit/?id=fb838489a4c258f3ad6aebb7e232cdf7b0541022
Submitter: Jenkins
Branch: master

commit fb838489a4c258f3ad6aebb7e232cdf7b0541022
Author: Steve Martinelli <email address hidden>
Date: Mon Mar 9 02:48:58 2015 -0400

Add scope info to initiator data for CADF notifications

    the project id (or domain id) is important information to audit,
    as such, it should be added to the initiator block of a CADF
    notification.

Change-Id: I7d73f671130485e449820d7f6d38a25c3bbc05bf
Closes-Bug: 1428945

Changed in keystone:
status:	In Progress → Fix Committed

Thierry Carrez (ttx) on 2015-03-19

Changed in keystone:
status:	Fix Committed → Fix Released

Thierry Carrez (ttx) on 2015-04-30

Changed in keystone:
milestone:	kilo-3 → 2015.1.0

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.