[MGNLSSO-304] Audit Logging is not called when user authenticates via SSO Created: 29/Aug/23  Updated: 30/Aug/23  Resolved: 30/Aug/23

Status: Closed
Project: Single Sign On
Component/s: None
Affects Version/s: None
Fix Version/s: None

Type: Improvement Priority: Neutral
Reporter: Chris Jennings Assignee: Unassigned
Resolution: Duplicate Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
duplicate
duplicates MGNLSSO-81 Add SSO logging to Magnolia access log Closed
Template:
Acceptance criteria:
Empty
Task DoD:
[ ]* Doc/release notes changes? Comment present?
[ ]* Downstream builds green?
[ ]* Solution information and context easily available?
[ ]* Tests
[ ]* FixVersion filled and not yet released
[ ]  Architecture Decision Record (ADR)
Epic Link: SSO maintenance
Team: AdminX

 Description   

The default LoginFilter uses an AuditLoggingUtil to write a log entry when a user authenticates but the SSO-specific one, SsoLoginFilter, does not use this util.

We might assume that any OIDC-compliant IAM will provide a log of authentications but adding this to our code would allow for a complete audit log.


Generated at Mon Feb 12 10:53:00 CET 2024 using Jira 9.4.2#940002-sha1:46d1a51de284217efdcb32434eab47a99af2938b.