self-service-password icon indicating copy to clipboard operation
self-service-password copied to clipboard

Published 20 hours ago verified publisher icon ltb-project

Why no logging for any actions taken by users?

Open TheAshwanik opened this issue 4 years ago • 1 comments

hi @coudot , Just trying to understand, why I could not see any logging ( kind of a log file) that can be used for audit purposes. Users, password change attempts, result of those attempts, date timestamp and obviously omitting any secrets and sensitive data.

Is there a reason? Or I am missing anything?

TheAshwanik avatar Sep 25 '20 19:09 TheAshwanik

Currently SSP has logs for errors and reset requests

We could add an audit log, feel free to propose some code

coudot avatar Sep 26 '20 17:09 coudot

I had a new request for an audit log

We can do something similar that what was done for Service Desk: https://github.com/ltb-project/service-desk/issues/72

coudot avatar May 11 '23 14:05 coudot

The information that should be logged:

  • Date
  • IP
  • User
  • Action
  • Result

The log should occur for both Web and REST access.

coudot avatar May 12 '23 15:05 coudot

Hello @TheAshwanik

You can check https://github.com/ltb-project/self-service-password/pull/781

coudot avatar Jun 21 '23 15:06 coudot

Thank you @coudot

TheAshwanik avatar Aug 21 '23 21:08 TheAshwanik