Top Banner
Audit: data extractors, data generators and integration with Syslog Iván Arroyo Alfresco Developer
15
Welcome message from author
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
Page 1: Audit and syslog lightning talk

Audit: data extractors, data generators and integration with Syslog

Iván ArroyoAlfresco Developer

Page 2: Audit and syslog lightning talk

What is the alfresco Audit?

Page 3: Audit and syslog lightning talk

Data Producers

What is a data producer?

Page 4: Audit and syslog lightning talk

Data Producers

PathMapping

Application

• An application define how data is mapped, extracted, and recorded without affecting data required by other applications

• The data generate by “data producers” are passing to application through the path mappings

Page 5: Audit and syslog lightning talk

Audit Component

Page 6: Audit and syslog lightning talk

Data extractors and data generators

Data Generator

• A DataGenerator is a component that produces data without any input i.e. data is produced when a data path is active, but is independent of the values at that path.

• A DataExtractor is a component that uses input data to produce some output, either transforming the data or merely outputting the data verbatim

Data Extractor

Page 7: Audit and syslog lightning talk

AuditQuery

Consult each audit application component by a customizable query

Normal query (all results)

•curl -u <admin user>:<password> "http://<hostname>:<port>/alfresco/service/api/audit/query/<application name>?verbose=true

Optional parameters

•forward (true|false), sorted upward (true)/ downward (false) by date time•limit (true|false), limit the number of results.•toId, return the results until id specified•value, the value to filter•fromTime/toTime, returns the result by the time interval specified (millisecond)

Page 8: Audit and syslog lightning talk

Unifying all of the above in an example

Page 9: Audit and syslog lightning talk

Modify the output of audited messages

• Why?

• Advantages and disadvantages

Page 10: Audit and syslog lightning talk

What is Syslog?

Page 11: Audit and syslog lightning talk

Syslog configuration

• Configuration file: /etc/syslog.conf

1.Facilities

2.Log File

Page 12: Audit and syslog lightning talk

Log4j: syslog appender and additivity

log4j.properties (appender)

log4j.appender.syslog=org.apache.log4j.net.SyslogAppenderlog4j.appender.syslog.syslogHost=localhostlog4j.appender.syslog.layout=org.apache.log4j.PatternLayoutlog4j.appender.syslog.layout.conversionPattern=%m%nlog4j.appender.syslog.Facility=local4

log4j.properties (additivity)

log4j.logger.org.alfresco.audit.LogAuditImpl=INFO,sysloglog4j.additivity.org.alfresco.audit.LogAuditImpl = false

Page 13: Audit and syslog lightning talk

Logrotate: master you log files

• What is?

• How works?

Page 14: Audit and syslog lightning talk

Demo

Page 15: Audit and syslog lightning talk

Thank You!

@ivanscn


Related Documents
Mit lightning talk

Mit lightning talk

Category: Documents
Mediestream Lightning Talk

Mediestream Lightning Talk

Category: Investor Relations
SQLFire lightning talk

SQLFire lightning talk

Category: Technology
Cluemapper Lightning Talk

Cluemapper Lightning Talk

Category: Technology
Atom Lightning Talk

Atom Lightning Talk

Category: Documents
Oftec Lightning talk

Oftec Lightning talk

Category: Software
Lightning talk hadoop

Lightning talk hadoop

Category: Technology
XSS Lightning talk

XSS Lightning talk

Category: Education
Aop Lightning Talk

Aop Lightning Talk

Category: Documents
ACCU2015 Lightning Talk

ACCU2015 Lightning Talk

Category: Software
OpenVRP Lightning Talk

OpenVRP Lightning Talk

Category: Technology
Clojure lightning talk

Clojure lightning talk

Category: Business