ecaudit
ecaudit copied to clipboard
Ericsson
Ericsson Audit plug-in for Apache Cassandra
Bound values to prepared statements are nicely logged by ecAudit. For example: PreparedStatement preparedStatement = session.prepare("INSERT INTO dataks.tbl (key, value) VALUES (?, ?)"); testSession.execute(preparedStatement.bind("myKey", 42)); Will log: "INSERT INTO dataks.tbl...
It would be nice if we could configure a size limit on values before logging them to the audit log. For instance it may not be useful to log 1M...
We should investigate the possibility to make Chronicle disk footprint smaller. Comparing the log size of the audit files created when running the run_ccm_performance_test.sh (runs cassandra-stress with 3 million requests),...
We currently don't have category field. To make it compatible with 4.0, we should have it.
In order to support different versions of Cassandra we're using the concept of flavors in ecAudit, which basically mean we maintain different branches of ecAudit - one for each supported...
In order to detect unauthorized use it would be beneficial to be able to specify that all failed (unauthorized) operations should be logged, regardless if the role is white-listed or...
We currently don't have ks field. To make it compatible with 4.0, we should have it.
Remove TODO comments where resonable
When a batch of updates is created manually (e.g. in cqlsh), the full batch will be logged as one single audit record. However, if a prepared batch is executed, then...
The ResourceFactory utility class throws IllegalArgumentException if an invalid resource String is passed in to any of its toResource() methods. This potential fault is not properly handled in WhitelistDataAccess and...