Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-16364

Audit code should not redact the contents of CRUD operations

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major - P3
    • Resolution: Gone away
    • Affects Version/s: 2.6.0
    • Fix Version/s: None
    • Component/s: Security
    • Labels:
      None
    • Operating System:
      ALL
    • Sprint:
      Security 2019-08-12

      Description

      As of 2.6.0, when commands authorization checks get logged for write command (insert, update, delete), if the command contains multiple actions (several inserts, say), the audit code only logs the number of actions, not the actions themselves. This was a side-effect of SERVER-12252.

        Attachments

          Issue Links

          is duplicated by

          Improvement - An improvement or enhancement to an existing feature or task. SERVER-36606 Remove size limits on BSON audit events

          • Major - P3 - Major loss of function.
          • Closed
          related to

          Bug - A problem which impairs or prevents the functions of the product. SERVER-41634 Audit log entry for insertMany only includes 1 document

          • Major - P3 - Major loss of function.
          • Closed

            Activity

              People

              Assignee:
              spencer.jackson Spencer Jackson
              Reporter:
              schwerin Andy Schwerin
              Participants:
              Votes:
              0 Vote for this issue
              Watchers:
              8 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: