[OPENAM-13004] Transactional Authorization tree authentication outcomes do not appear to be audited or monitored - ForgeRock JIRA

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 6.0.0
Fix Version/s: 6.5.0
Component/s: audit logging, authentication, monitoring, trees
Labels:
- AME
- Must-Fix
- TESLA

Target Version/s:

6.5.0

Needs backport:

No

Needs QA verification:

Yes
Functional tests:

No
Are the reproduction steps defined?:

Yes but I used my own steps. (If so, please add them in a new comment)

Description

Bug description

From static analysis, it appears that org.forgerock.openam.core.rest.authn.trees.SuccessProcessTreeResult#process and org.forgerock.openam.core.rest.authn.trees.FailureProcessTreeResult#process exit without auditing or monitoring the authentication outcome when the authentication is in support of transactional authorization.

How to reproduce the issue

Perform transactional authorization using an authentication tree to perform the authentication
Check the authentication audit log and authentication monitoring metrics after completing the authentication part of transactional authorization

Expected behaviour

The outcome should update audit logs and metrics.

Current behaviour

The outcome likely does not update audit logs and metrics. (needs to be confirmed by investigation).

Work around

N/A

Code analysis

N/A

Attachments

Options
- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

Attachments

OPENAM-13004-example.zip
179 kB
08/May/18 4:02 PM

Activity

People

Assignee:

Jay Bowers

Reporter:

Craig McDonnell

Votes:

0 Vote for this issue

Watchers:

2 Start watching this issue

Dates

Created:

26/Apr/18 10:28 AM

Updated:

06/Jun/18 3:10 PM

Resolved:

16/May/18 10:25 AM