Open ateska opened 1 year ago
LOGIN_SUCCESS relates to user authentication and to the creation of a new root session. there is also AUTHORIZE_SUCCESS, which relates to authorization (at /oauth/authorize endpoint) and to the creation of a new client subsession. ANONYMOUS_SESSION_CREATED is somewhere in between, but imo closer to authorization since it's basically authorization without proper authentication.
i suggest replacing the above with these two events:
anonymous=True
is added to the audit event.Ok, I agree.
These are basically the same events.