Expand my Community achievements bar.

Radically easy to access on brand approved content for distribution and omnichannel performant delivery. AEM Assets Content Hub and Dynamic Media with OpenAPI capabilities is now GA.
SOLVED

Log User permission or Group permission changes in AEM 6.5

Avatar

Employee

Hello Community,

 

I want to log the permission changes at any user level or group level.

 

My logger is set to debug and these are the classes added.

 

com.adobe.granite.security.permissions.internal.servlets.PoliciesServlet
com.adobe.granite.security.user.internal.servlets.AuthorizableServlet
com.adobe.granite.security.user.internal.audit

 

I could see the group/user created/removed but not the permission changes

1 Accepted Solution

Avatar

Correct answer by
Community Advisor

Did you check the Audit log?

 

The Audit Log feature in AEM logs all the activities performed in the system, including changes to user and group permissions.

To specifically log permission changes, you might need to create a custom event handler that listens for changes to the rep:policy nodes (which store the permissions) and logs these changes.

View solution in original post

2 Replies

Avatar

Correct answer by
Community Advisor

Did you check the Audit log?

 

The Audit Log feature in AEM logs all the activities performed in the system, including changes to user and group permissions.

To specifically log permission changes, you might need to create a custom event handler that listens for changes to the rep:policy nodes (which store the permissions) and logs these changes.

Avatar

Administrator

@SateeshRe Did you find the suggestions from users helpful? Please let us know if more information is required. Otherwise, please mark the answer as correct for posterity. If you have found out solution yourself, please share it with the community.



Kautuk Sahni