Package org.apache.directory.fortress.core

Interface AuditMgr

    • Method Detail

      • searchUserSessions

        List<Mod> searchUserSessions​(UserAudit uAudit)
                      throws SecurityException
        This method returns a list of sessions created for a given user UserAudit.userId, and timestamp UserAudit.beginDate.

        required parameters

        optional parameters

        Parameters:
        uAudit - This entity is instantiated and populated before invocation.
        Returns:
        a List of objects of type Mod. Each Mod object in list corresponds to one update or delete event on directory.
        Throws:
        SecurityException - if a runtime system error occurs.

      • searchAdminMods

        List<Mod> searchAdminMods​(UserAudit uAudit)
                   throws SecurityException
        This method returns a list of admin operations events for a particular entity UserAudit.dn, object UserAudit.objName and timestamp UserAudit.beginDate. If the internal userId UserAudit.internalUserId is set it will limit search by that field.

        optional parameters

        • UserAudit.dn - contains the LDAP distinguished name for the updated object. For example if caller wants to find out what changes were made to John Doe's user object this would be 'uid=jdoe,ou=People,dc=example,dc=com'
        • UserAudit.objName - contains the object (authorization resource) name corresponding to the event. For example if caller wants to return events where User object was modified, this would be 'updateUser'
        • UserAudit.internalUserId - maps to the internalUserId of user who changed the record in LDAP. This maps to User.internalId.
        • UserAudit.beginDate - contains the date in which to begin search
        • UserAudit.endDate - contains the date in which to end search
        Parameters:
        uAudit - This entity is instantiated and populated before invocation.
        Returns:
        a List of objects of type Mod. Each Mod object in list corresponds to one update or delete event on directory.
        Throws:
        SecurityException - if a runtime system error occurs.

      • searchInvalidUsers

        List<AuthZ> searchInvalidUsers​(UserAudit uAudit)
                        throws SecurityException
        This method returns a list of failed authentication attempts on behalf of an invalid identity UserAudit.userId, and given timestamp UserAudit.beginDate. If the UserAudit.failedOnly is true it will return only authentication attempts made with invalid userId. This event represents either User incorrectly entering userId during signon or possible fraudulent logon attempt by hostile agent.

        This event is generated when Fortress looks up User record prior to LDAP bind operation.

        optional parameters

        Parameters:
        uAudit - This entity is instantiated and populated before invocation.
        Returns:
        a List of objects of type AuthZ. Each AuthZ object contains one failed authentication event.
        Throws:
        SecurityException - if a runtime system error occurs.