Adobe Experience Manager Sites & More

Veera_kandregul · 3:39:18 AM

Hi All,

We have a requirement to audit SAML requests in logs (say request.log or some custom log), where we need to show one of the SAML assertion value in the logs for every request.

Can you please let me know if there there any OOTB or custom way to achieve this?

Example, if below is the assertion value,

<saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic"> <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue> </saml:Attribute>

We need to log test@example.com in every request log.

TundraSteve · 5:21:12 PM

Why would the request be the responsibilty of AEM? AEM would be passing the assertion over to the SAML server that should be able to log the request

원본 게시물의 솔루션 보기

Veera_kandregul · 1:20:57 PM

bumping up, any help ?

VarunV · 3:56:55 PM

Hi Veera,

Did you try configuring a Logging Writer (on debug) for com.adobe.granite.auth.saml ? This might give you some basic details (not entirely).

THanks

Varun

Veera_kandregul · 4:19:31 PM

Bumping this one again, can you guys let me know if there is any way?

smacdonald2008 · 4:36:09 PM

This is not a documented use case - we will continue to check with the internal AEM team.

TundraSteve · 5:21:12 PM

Why would the request be the responsibilty of AEM? AEM would be passing the assertion over to the SAML server that should be able to log the request

Adobe Experience Manager Sites & More

SAML assertion value in logs

학습

기술 문서

이벤트

커뮤니티

고객 지원

리소스

Adobe 계정

Adobe