Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Exclude read access of Disease- and FeatureConfigurationFacade and the Infrastructure facades from the audit log [3] #9882

Closed
7 tasks done
Tracked by #7904
MartinWahnschaffe opened this issue Jul 18, 2022 · 2 comments · Fixed by #10894
Closed
7 tasks done
Tracked by #7904

Exclude read access of Disease- and FeatureConfigurationFacade and the Infrastructure facades from the audit log [3] #9882

MartinWahnschaffe opened this issue Jul 18, 2022 · 2 comments · Fixed by #10894
Assignees
@JonasCir
Labels
audit backend Affects the web backend change A change of an existing feature (ticket type) data-protection
Milestone
Sprint 120 - 1.77.0

Comments

@MartinWahnschaffe
Copy link
Contributor

MartinWahnschaffe commented Jul 18, 2022
edited by JonasCir
Loading

Problem Description

Read access to those facades is not relevant for the audit log and leads to a lot of unnecessary entries.

Proposed Change

  • Find a generic way to ignore all read calls to those facades in AuditLoggerInterceptor. The logic in AudiLoggerEjb.inferBackendAction may be of help.
  • Also take care of ExternalSurveillanceToolGatewayFacadeEjb.isFeatureEnabled() and SormasToSormasFacadeEjb.isAnyFeatureConfigured
  • UserRoleFacadeEjb.getAllActiveAsReference() should be removed
  • DistrictFacadeEjb.getAllActiveByRegion(java.lang.String)
  • CommunityFacadeEjb.getAllActiveByRegion(java.lang.String)
  • PointOfEntryFacadeEjb.getAllActiveByRegion(java.lang.String)
  • DiseaseConfigurationFacadeEjb.getAllDiseases

Acceptance Criteria

  • Call to FeatureConfigurationFacade.isFeatureEnabled is no longer logged
  • Call to FeatureConfigurationFacade.saveFeatureConfiguration is still logged. Can be tested using LineListingResource.postFeatureConfigurations (lineListing/push)

Implementation Details

Additional Information
@MartinWahnschaffe MartinWahnschaffe added backend Affects the web backend change A change of an existing feature (ticket type) data-protection labels Jul 18, 2022
@MartinWahnschaffe MartinWahnschaffe mentioned this issue Jul 18, 2022
Open
30 tasks
@StefanKock StefanKock changed the title Exclude read access of Disease- and FeatureConfigurationFacade from the audit log Exclude read access of Disease- and FeatureConfigurationFacade from the audit log [3] Aug 3, 2022
@JonasCir JonasCir self-assigned this Aug 31, 2022
@JonasCir JonasCir added the audit label Sep 12, 2022
@markusmann-vg markusmann-vg added this to the Sprint 120 - 1.77.0 milestone Sep 29, 2022
@JonasCir JonasCir changed the title Exclude read access of Disease- and FeatureConfigurationFacade from the audit log [3] Exclude read access of Disease- and FeatureConfigurationFacade and the Infrastructure facadesfrom the audit log [3] Oct 18, 2022
@JonasCir JonasCir changed the title Exclude read access of Disease- and FeatureConfigurationFacade and the Infrastructure facadesfrom the audit log [3] Exclude read access of Disease- and FeatureConfigurationFacade and the Infrastructure facades from the audit log [3] Oct 18, 2022
@JonasCir
Copy link
Contributor

Hey @MartinWahnschaffe I see the following ways:

  1. exclude the methods of FeatureConfigurationFacade by manually adding them to the deny-list
  2. special case FeatureConfigurationFacade and re-use inferBackendAction somehow
  3. do not special case and introduce an annotation à la @FacadeMethodInclude which we put on saveFeatureConfiguration etc to include them. We could get rid of ignoreAuditMethods by introducing a @FacadeMethodIgnore. We use the reflections library to scan for the methods in the static initializer.

@MartinWahnschaffe
Copy link
Contributor Author

As discussed let's use the following approach:

  1. Introduce an annotation that allows to ignore whole methods and classes. I'm not sure what's the best way to differentiate this from the existing AuditInclude/Excluse annotation used for dtos. To me those names would be a better fit to what we need here so maybe the existing annotation should be renamed to AuditPropertyInclude/Exclude
  2. Introduce a class annotation that allows to exclude read-only methods from auditing. Can re-use the inferBackendAction logic to build a cache of methods to be ignored.

JonasCir added a commit that referenced this issue Nov 10, 2022
@JonasCir
[#9882] rename Audit{Include,Exclude} -> Audit{Include,Exclude}Property
8d14610
JonasCir added a commit that referenced this issue Nov 10, 2022
@JonasCir
[#9882] reflection/annotation-based detection of audit-ignored classe…
efb3627 
…s and methods
JonasCir added a commit that referenced this issue Nov 10, 2022
@JonasCir
[#9882] STASH
9ea9013
JonasCir added a commit that referenced this issue Nov 10, 2022
@JonasCir
[#9882] handle AuditIgnore annotation in interceptor to determine ign…
acb2f7a 
…ored classes and retained/ignored methods
JonasCir added a commit that referenced this issue Nov 10, 2022
@JonasCir
[#9882] ignore methods specified in ticket
ee4b75e
JonasCir added a commit that referenced this issue Nov 10, 2022
@JonasCir
[#9882] adjust visibility back to private
9b0e85f
@JonasCir JonasCir mentioned this issue Nov 10, 2022
Merged
JonasCir added a commit that referenced this issue Nov 10, 2022
@JonasCir
[#9882] handle AuditIgnore annotation in interceptor to determine ign…
e6f969d 
…ored classes and retained/ignored methods
JonasCir added a commit that referenced this issue Nov 10, 2022
@JonasCir
[#9882] ignore methods specified in ticket
08aa121
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@JonasCir JonasCir

Labels
audit backend Affects the web backend change A change of an existing feature (ticket type) data-protection
Projects
None yet
Milestone
Sprint 120 - 1.77.0
Development

Successfully merging a pull request may close this issue.

Change/9882 ignore more facades SORMAS-Foundation/SORMAS-Project
4 participants
@JonasCir @MartinWahnschaffe @StefanKock @markusmann-vg