Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-12681

Calls to the CREST monitoring endpoint are not audited

    Details

    • Needs backport:
      No
    • Needs QA verification:
      No
    • Functional tests:
      No
    • Are the reproduction steps defined?:
      Yes and I used the same an in the description

      Description

      Bug description

      HTTP calls to the CREST endpoint for reading metrics are not recorded in the access audit logs.

      How to reproduce the issue

      1. Login to AM as amadmin
      2. Navigate to Configure > Global Services > Monitoring
      3. Ensure "Monitoring Status" is enabled
      4. Ensure "Monitoring HTTP interface status" is enabled
      5. Read metrics from the CREST endpoint using the following script:
      #!/bin/bash
      
      set -x
      set -e
      
      openam_url="http://openam1.example.com:18080/openam"
      
      # get admin session
      adminSessionId=`curl --request POST \
          "$openam_url/json/authenticate" \
          --header "Content-Type: application/json" \
          --header "Accept-API-Version:protocol=1.0,resource=1.0" \
          --header "X-OpenAM-Username: amadmin" \
          --header "X-OpenAM-Password: cangetinam" \
          --data "{}" \
          2>/dev/null | jq -r .tokenId`
      
      # read metrics
      curl --request GET \
          "$openam_url/json/metrics/api?_queryFilter=true" \
          --header "Content-Type: application/json" \
          --header "iPlanetDirectoryPro: ${adminSessionId}" \
          --data '{}'
      
      Expected behaviour
      Audit event is recorded in ~/openam/openam/log/access.audit.json
      
      Current behaviour
      No audit event is recorded in ~/openam/openam/log/access.audit.json
      

      Work around

      N/A

        Attachments

          Activity

            People

            • Assignee:
              craig.mcdonnell Craig McDonnell
              Reporter:
              craig.mcdonnell Craig McDonnell
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: