shibboleth-dev - RE: Shibboleth log files and accountability
Subject: Shibboleth Developers
List archive
- From: Scott Cantor <>
- To: "'Allen,Eva'" <>,
- Subject: RE: Shibboleth log files and accountability
- Date: Fri, 13 Feb 2004 19:02:56 -0500
- Importance: Normal
- Organization: The Ohio State University
Snipped for brevity, but I take your point. ;-)
We have a pretty simple way to build a basic audit log, since each session
has a much shorter identifier attached to it (the encrypted handles most
origins use are huge (that thing you had at the end).
All we really need is to have a record when the session starts, various key
life cycle events, and so forth, labeled with the cookie value. The new
model for application configuration in 1.2 provides more useful context for
the session.
What I'm not sure we can do easily is tie that effectively to real
application events on your side of the fence, but maybe that's not a
requirement.
In any case, we probably also need to improve the logs more generally, but
we probably want to keep the real audit logging distinct like the origin
did.
-- Scott
- Shibboleth log files and accountability, Allen,Eva, 02/13/2004
- RE: Shibboleth log files and accountability, Scott Cantor, 02/13/2004
- status of Apache 2.0 module, Mark Wilcox, 02/16/2004
- Re: status of Apache 2.0 module, Steven_Carmody, 02/16/2004
- RE: status of Apache 2.0 module, Mark Wilcox, 02/18/2004
- RE: status of Apache 2.0 module, Steven_Carmody, 02/18/2004
- RE: status of Apache 2.0 module, Mark Wilcox, 02/18/2004
- Re: status of Apache 2.0 module, Steven_Carmody, 02/16/2004
- status of Apache 2.0 module, Mark Wilcox, 02/16/2004
- RE: Shibboleth log files and accountability, Scott Cantor, 02/13/2004
Archive powered by MHonArc 2.6.16.