Skip to content

Auditing Module

Jump to bottom
Nuno Oliveira edited this page Jan 14, 2016 · 37 revisions

Building

The auditing module is activated by a Maven profile auditing. To build with audit support enable enter the src/ directory and launch:

mvn clean install -Pauditing

To run the application from Maven with Jetty you also need the profile:

mvn jetty:run -Pauditing

Configuring

An environment variable or a Java property variable of name GEOSTORE_AUDITING_CONF must exist and point to a valid configuration file. For example as a java property variable:

-DGEOSTORE_AUDITING_CONF="/opt/geostore/conf/auditing.properties"

and as Linux environment variable: export GEOSTORE_AUDITING_CONF="/opt/geostore/conf/auditing.properties"

If the variable above is not defined the auditing capabilities will be deactivated without an exception, but an warning will appear in the log application log file.

The configuration file must contain the following properties:

auditing.enable=true
auditing.templates.directory=/opt/geostore/conf/templates
auditing.output.directory=/var/geostore/auditing
auditing.templates.version=1
auditing.max.requests.per.file=100
auditing.output.files.extension=xml

Templates

The auditing output can be configured using Apache FreeMarker template language. Three templates are required header.ftl, body.ftl and footer.ftl and should be present on the templates directory.

Follow examples of the three templates that contain all the possible values.

Header

<?xml version="1.0" encoding="UTF-8" ?>
<Requests>

Body

<#escape x as x?xml>
<Request id="${id!""}">
   <HttpMethod>${httpMethod!""}</HttpMethod>
   <Path>${path!""}</Path>
   <BasePath>${basePath!""}</BasePath>
   <QueryString>${queryString!""}</QueryString>
   <RemoteAddr>${remoteAddr!""}</RemoteAddr>
   <RemoteHost>${remoteHost!""}</RemoteHost>
   <RemoteUser>${remoteUser!""}</RemoteUser>
   <UserName>${userName!""}</UserName>
   <UserRole>${userRole!""}</UserRole>
   <UserGroups>${userGroups!""}</UserGroups>
   <Host>${host}</Host>
   <#if bodyAsString??>
   <Body>${bodyAsString}</Body>
   </#if>
   <#if failed??>
   <Failed>true</Failed>
   <ErrorMessage>${errorMessage!""}</ErrorMessage>
   <#else>
   <Failed>false</Failed>
   </#if>
   <ResponseStatus>${responseStatus!""}</ResponseStatus>
   <ResponseContentType>${responseContentType!""}</ResponseContentType>
   <ResponseLength>${responseLength!""}</ResponseLength>
   <StartTime>${(startTime?number?number_to_datetime?iso_utc_ms)!""}</StartTime>
   <EndTime>${(endTime?number?number_to_datetime?iso_utc_ms)!""}</EndTime>
   <TotalTime>${totalTime!""}</TotalTime>
</Request>
</#escape>

Footer

</Requests>

Clone this wiki locally