Loading...

XML

Word

Printable

Details

Type: Improvement
Resolution: Fixed
Priority: Major
Fix Version/s: 7.6.2
Affects Version/s: 7.6.0
Component/s: cbauth
Labels:
- approved-for-7.6.2
- no-doc

Story Points:
0

Description

Query uses cbauth to check user authorisation, some of which isn't as a result of a direct user action - these checks can result in flooding of audit logs and alarm users. We'd like to be able to tell cbauth when an authorisation action is internally driven so that it can be exempt from auditing. This would help reduce the volume of unnecessary audit logging and thereby help improve the utility of auditing.

Attachments

Issue Links

relates to

MB-61007 Need to revise internal authorisation calls to inform cbauth the action is internal

Resolved

Gerrit Reviews

- Issue Only
- Show All Reviews
- Show Open Reviews
- Show All Issues
- Show Open Issues

No reviews matched the request. Check your Options in the drop-down menu of this sections header.

Activity

People

Assignee:: Pierre Regazzoni

Reporter:: Donald Haggart

Votes:: 0 Vote for this issue

Watchers:: 8 Start watching this issue

Dates

Created:: 01/Mar/24 9:15 AM

Updated:: 11/Apr/24 11:29 PM

Resolved:: 03/Apr/24 9:19 AM

Gerrit Reviews

There are no open Gerrit changes

Show There are 5 closed Gerrit changes

Hide There are 5 closed Gerrit changes

MB-61006: provide api to disable audit ...: Gerrit Review:

MB-61006: introduce IsAllowedInternal cbauth: Gerrit Review:

Merge remote-tracking branch 'couchbase/trinity': Gerrit Review:

Merge remote-tracking branch 'couchbase/trinity': Gerrit Review:

Merge branch 'couchbase/trinity' into master: Gerrit Review:

PagerDuty