Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-97916

Update AuditEventOCSF::_buildUser() to use AuditUserAttrs

XMLWordPrintableJSON

    • Type: Icon: Task Task
    • Resolution: Duplicate
    • Priority: Icon: Major - P3 Major - P3
    • None
    • Affects Version/s: None
    • Component/s: None
    • None
    • Server Security
    • Security 2024-12-23, Security 2025-01-20, 2024-12-24

      Now that AuditUserAttrs can be trusted to contain the correct user and roles that need to be audited (either directly authenticated or impersonated), update the OCSF-formatted audit logs to retrieve user and role information from AuditUserAttrs instead of AuthorizationSession.

            Assignee:
            tianyu.wang@mongodb.com Tianyu Wang
            Reporter:
            varun.ravichandran@mongodb.com Varun Ravichandran
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved: