OpenStack Identity (keystone)

keystone should log all authentication failures

Bug #1036161 reported by Ionuț Arțăriși on 2012-08-13

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	OpenStack Identity (keystone)	Fix Released	Wishlist	Ionuț Arțăriși	OpenStack Identity (keystone) 2012.2 "folsom"

Bug Description

Keystone currently only logs some auth failures, but I think everything should be logged together with the IP of the requester. Without this, there is no way for sysadmins to track authentication errors and the originating IP in case of attacks for example.

OpenStack Infra (hudson-openstack) on 2012-08-13

Changed in keystone:
assignee:	nobody → Ionuț Arțăriși (mapleoin)
status:	New → In Progress

Thierry Carrez (ttx) on 2012-09-11

Changed in keystone:
importance:	Undecided → Wishlist

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2012-09-13: Fix merged to keystone (master)

Reviewed: https://review.openstack.org/11271
Committed: http://github.com/openstack/keystone/commit/861f27f83d9b074f48109b6e00f2af0cd2469ce7
Submitter: Jenkins
Branch: master

commit 861f27f83d9b074f48109b6e00f2af0cd2469ce7
Author: Ionuț Arțăriși <email address hidden>
Date: Mon Aug 13 14:26:21 2012 +0200

LOG.warn all exception.Unauthorized authentication failures

Fixes bug: 1036161

Change-Id: I45cf27cb6e702a0470243efdb310eb0a65cfd2b0

Changed in keystone:
status:	In Progress → Fix Committed

Joseph Heck (heckj) on 2012-09-13

Changed in keystone:
milestone:	none → folsom-rc1

Thierry Carrez (ttx) on 2012-09-14

Changed in keystone:
status:	Fix Committed → Fix Released

Thierry Carrez (ttx) on 2012-09-27

Changed in keystone:
milestone:	folsom-rc1 → 2012.2

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.