feat(jans-cedarling): Improve logging of cedarling

JanssenProject / jans

An open source enterprise digital identity platform for CIAM or workforce... Janssen is a distribution of standards-based, developer friendly, components that are engineered to work together in any cloud. #OAuth #OpenID #FIDO

https://docs.jans.io

Apache License 2.0

479 stars 75 forks source link

feat(jans-cedarling): Improve logging of cedarling #10276

Open olehbozhok opened 2 days ago

olehbozhok commented 2 days ago

Is your feature request related to a problem? Please describe. We need to improve logging to maximize the information that helps us with forensic analysis, and minimize useless information.

Describe the solution you'd like We conclude to update diagnostic information to store in reason the description of the policy that was executed on authorize request.

About other information we did not find a general solution.

olehbozhok commented 2 days ago

Agreed to log policy ID and description. Also agreed to log all cedar-policy entities data that was used for authorize request.

olehbozhok commented 11 hours ago

Continue in https://github.com/JanssenProject/jans/issues/10303