Project

General

Profile

Actions

Architecture #14015

open

We don't have a way to log all input request of webapp

Added by François ARMAND over 5 years ago. Updated 11 days ago.

Status:
New
Priority:
N/A
Assignee:
-
Category:
System integration
Target version:
Effort required:
Name check:
Fix check:
Regression:

Description

We absolutly need to be able to log input request to rudder webapp (ie at jetty level), with POST details level, at least for REST API.

Actually, we need to be able to tell:

- log all input request with timing (we have that one: net.liftweb.util.TimeHelpers at info level)
- log some input request full level (headers, params, body), specifying a path or regex (ex: /api/latests/nodes/pending/xxxxx)

We may skip 4.1 for that, but at least 4.3 is a must have to allows debugging of real prod problems.

A workaround for debuging, at apache level is to use mod_security with the following configuration:


# /etc/httpd/conf.d/rudder.conf

<VirtualHost *:443>
.... existing configuration ....

  # enable security log audit
  SecRuleEngine DetectionOnly
  SecAuditEngine RelevantOnly

  # Setup logging in a dedicated file for Rudder
  SecAuditLog /var/log/rudder/apache2/rest-debug.log
  # Allow it to access requests body - we need to explore POST
  SecRequestBodyAccess on
  # part of the request relevant to us, see:
  # https://github.com/SpiderLabs/ModSecurity/wiki/Reference-Manual-%28v2.x%29#SecAuditLogParts
  SecAuditLogParts ABIFHZ

  # Setup default action: log nothing
  SecDefaultAction "nolog,noauditlog,phase:1,allow" 

  # Define the rule that will log for ex requests on REST API for pending nodes
  SecRule REQUEST_URI ".*/api/latest/nodes/pending.*" "auditlog,phase:1,allow,id:42" 

</VirtualHost>

Actions #1

Updated by François ARMAND over 5 years ago

Actually, we should always have API request stored, perhaps in a dedicated file format ?

Actions #2

Updated by Vincent MEMBRÉ over 5 years ago

  • Target version changed from 4.3.8 to 4.3.9
Actions #3

Updated by Alexis Mousset about 5 years ago

  • Target version changed from 4.3.9 to 4.3.10
Actions #4

Updated by François ARMAND about 5 years ago

  • Target version changed from 4.3.10 to 4.3.11
Actions #5

Updated by Vincent MEMBRÉ about 5 years ago

  • Target version changed from 4.3.11 to 4.3.12
Actions #6

Updated by Vincent MEMBRÉ almost 5 years ago

  • Target version changed from 4.3.12 to 4.3.13
Actions #7

Updated by Vincent MEMBRÉ almost 5 years ago

  • Target version changed from 4.3.13 to 4.3.14
Actions #8

Updated by Vincent MEMBRÉ almost 5 years ago

  • Target version changed from 4.3.14 to 587
Actions #9

Updated by Alexis Mousset almost 5 years ago

  • Target version changed from 587 to 5.0.13
Actions #10

Updated by Vincent MEMBRÉ over 4 years ago

  • Target version changed from 5.0.13 to 5.0.14
Actions #11

Updated by Vincent MEMBRÉ over 4 years ago

  • Target version changed from 5.0.14 to 5.0.15
Actions #12

Updated by Vincent MEMBRÉ over 4 years ago

  • Target version changed from 5.0.15 to 5.0.16
Actions #13

Updated by Alexis Mousset about 4 years ago

  • Target version changed from 5.0.16 to 5.0.17
Actions #14

Updated by Vincent MEMBRÉ about 4 years ago

  • Target version changed from 5.0.17 to 5.0.18
Actions #15

Updated by Vincent MEMBRÉ over 3 years ago

  • Target version changed from 5.0.18 to 5.0.19
Actions #16

Updated by Vincent MEMBRÉ over 3 years ago

  • Target version changed from 5.0.19 to 5.0.20
Actions #17

Updated by Vincent MEMBRÉ over 3 years ago

  • Target version changed from 5.0.20 to 797
Actions #18

Updated by Benoît PECCATTE almost 3 years ago

  • Target version changed from 797 to 6.1.14
Actions #19

Updated by Vincent MEMBRÉ almost 3 years ago

  • Target version changed from 6.1.14 to 6.1.15
Actions #20

Updated by Vincent MEMBRÉ almost 3 years ago

  • Target version changed from 6.1.15 to 6.1.16
Actions #21

Updated by Vincent MEMBRÉ over 2 years ago

  • Target version changed from 6.1.16 to 6.1.17
Actions #22

Updated by Vincent MEMBRÉ over 2 years ago

  • Target version changed from 6.1.17 to 6.1.18
Actions #23

Updated by Vincent MEMBRÉ over 2 years ago

  • Target version changed from 6.1.18 to 6.1.19
Actions #24

Updated by François ARMAND about 2 years ago

  • Tracker changed from Bug to Architecture
  • Severity deleted (Critical - prevents main use of Rudder | no workaround | data loss | security)
  • Priority deleted (0)
Actions #25

Updated by Vincent MEMBRÉ about 2 years ago

  • Target version changed from 6.1.19 to 6.1.20
Actions #26

Updated by Vincent MEMBRÉ almost 2 years ago

  • Target version changed from 6.1.20 to 6.1.21
Actions #27

Updated by Vincent MEMBRÉ almost 2 years ago

  • Target version changed from 6.1.21 to old 6.1 issues to relocate
Actions #28

Updated by Alexis Mousset about 1 year ago

  • Target version changed from old 6.1 issues to relocate to 8.0.0~alpha1
Actions #29

Updated by Vincent MEMBRÉ 9 months ago

  • Target version changed from 8.0.0~alpha1 to 8.0.0~beta1
Actions #30

Updated by Alexis Mousset 9 months ago

  • Target version changed from 8.0.0~beta1 to 8.1.0~alpha1
Actions #31

Updated by Vincent MEMBRÉ 3 months ago

  • Target version changed from 8.1.0~alpha1 to 8.1.0~beta1
Actions #32

Updated by Vincent MEMBRÉ about 2 months ago

  • Target version changed from 8.1.0~beta1 to 8.1.0~beta2
Actions #33

Updated by Vincent MEMBRÉ about 1 month ago

  • Target version changed from 8.1.0~beta2 to 8.1.0~rc1
Actions #34

Updated by Vincent MEMBRÉ 17 days ago

  • Target version changed from 8.1.0~rc1 to 8.1.0
Actions #35

Updated by Vincent MEMBRÉ 11 days ago

  • Target version changed from 8.1.0 to 8.1.1
Actions

Also available in: Atom PDF