Details
Minor Description
Summary
On the same lines as MB-50434, MB-50433, we can log a system event for "Security config changed" only when the settings have actually changed.
Current behaviour:
1. Change tls min version to 1.1
/opt/couchbase/bin/couchbase-cli setting-security -c 172.23.136.107:8091 -u Administrator -p password --set --tls-min-version tlsv1.1
|
logs system event as expected
[{"timestamp":"2022-01-27T09:37:03.019Z","event_id":9220,"component":"security","description":"Security config changed","severity":"info","node":"cb.local","otp_node":"ns_1@cb.local","uuid":"e0801970-154a-45ef-ba6f-522c99e81cf4","extra_attributes":{"old_settings":{"ssl_minimum_protocol":"tlsv1.2"},"new_settings":{"ssl_minimum_protocol":"tlsv1.1"}}}]
|
2. On repeating the same command again, the following event is logged
[{"timestamp":"2022-01-27T09:37:27.242Z","event_id":9220,"component":"security","description":"Security config changed","severity":"info","node":"cb.local","otp_node":"ns_1@cb.local","uuid":"2c246962-1d0a-4557-84cc-9bd154fe859b","extra_attributes":{"old_settings":{},"new_settings":{}}}]
|
(which can be avoided similar to MB-50434, MB-50433)
Attachments
| For Gerrit Dashboard: MB-50633 | ||||||
|---|---|---|---|---|---|---|
| # | Subject | Branch | Project | Status | CR | V |
| 173157,4 | MB-50633: Add security_cfg_changed event log only when cfg changes | master | ns_server | Status: MERGED | +2 | +1 |