/** * adds an item to the audit log, this is a wrapper function * * @param classname * @param method * @param username * @param memo * @param classification, if null, not specified will be used, otherwise a * prettyprint version of the classificaiton level will be used * @param messageContext */ public static void logItem(String classname, String method, String username, String memo, SecurityWrapper classification, MessageContext messageContext) { if (classification == null || classification.getClassification() == null || classification.getCaveats() == null) { logItem(classname, method, username, memo, unspecified, messageContext); } else { logItem(classname, method, username, memo, Utility.ICMClassificationToString(classification.getClassification()) + " " + classification.getCaveats(), messageContext); } } public static final String unspecified = "UNSPECIFIED";
memo += " " + String.valueOf(used) + "% in use, processors: " + Runtime.getRuntime().availableProcessors(); log.log(Level.DEBUG, "fgsms Audit Log: " + logForgePrevention(classname) + " " + logForgePrevention(method) + " username: " + logForgePrevention(username) + " memo: " + logForgePrevention(memo)); Connection con = Utility.getConfigurationDBConnection(); PreparedStatement com=null;
AuditLogger.logItem(this.getClass().getCanonicalName(), "exportDataToHTML", currentUser, "null request", "not specified", ctx.getMessageContext()); throw new IllegalArgumentException("request is null");
AuditLogger.logItem(this.getClass().getCanonicalName(), "getPerformanceAverageStatsAll", currentUser, "", (classification), ctx.getMessageContext()); ArrayList<GetPerformanceAverageStatsResponseMsg> ret = new ArrayList<GetPerformanceAverageStatsResponseMsg>(); ArrayOfServiceType GetServiceListfromPolicyDB = DASHelper.getServiceListfromPolicyDB(ctx, (classification), PolicyType.TRANSACTIONAL);
if (right == 0) { log.log(Level.ERROR, currentUser + " does not have fgsms administer rights for " + uri + " from " + fromFunction); AuditLogger.logItem(UserIdentityUtil.class.getCanonicalName(), fromFunction, currentUser, "admin deny", classification, null); throw new SecurityException("Access Denied");
String currentUser = UserIdentityUtil.getFirstIdentityToString(ctx); if (request == null) { AuditLogger.logItem(this.getClass().getCanonicalName(), "getReport", currentUser, "", "not specified", ctx.getMessageContext()); throw new IllegalArgumentException("request is null"); throw new IllegalArgumentException("a report id must be specified"); AuditLogger.logItem(this.getClass().getCanonicalName(), "getReport", currentUser, request.getReportId(), (request.getClassification()), ctx.getMessageContext()); GetReportResponseMsg r = new GetReportResponseMsg(); r.setClassification(getCurrentOperatingClassificationLevel());
String currentUser = UserIdentityUtil.getFirstIdentityToString(ctx); if (request == null) { AuditLogger.logItem(this.getClass().getCanonicalName(), "addOrUpdateScheduledReport", currentUser, "", "not specified", ctx.getMessageContext()); throw new IllegalArgumentException("request is null"); throw new IllegalArgumentException("at least one report must be specified for updating"); AuditLogger.logItem(this.getClass().getCanonicalName(), "addOrUpdateScheduledReport", currentUser, "", (request.getClassification()), ctx.getMessageContext());
AuditLogger.logItem(UserIdentityUtil.class.getCanonicalName(), fromFunction, currentUser, "global audit deny", classification, null); throw new SecurityException("Access Denied");
AuditLogger.logItem(UserIdentityUtil.class.getCanonicalName(), fromFunction, currentUser, "agent deny", currentLevel, null);
DBUtils.safeClose(con); if (right == 0) { AuditLogger.logItem(UserIdentityUtil.class.getCanonicalName(), fromFunction, currentUser, "audit deny", classification, null); log.log(Level.ERROR, currentUser + " does not have fgsms audit rights for " + uri + " from " + fromFunction); throw new SecurityException("Access Denied");
AuditLogger.logItem(UserIdentityUtil.class.getCanonicalName(), fromFunction, currentUser, "global admin deny", classification, null); throw new SecurityException("Access Denied");
AuditLogger.logItem(UserIdentityUtil.class.getCanonicalName(), fromFunction, currentUser, "agent deny", currentLevel, null);
AuditLogger.logItem(UserIdentityUtil.class.getCanonicalName(), fromFunction, currentUser, "global audit deny", classification, null);
if (right == 0) { log.log(Level.ERROR, currentUser + " does not have fgsms write rights for " + uri + " from " + fromFunction); AuditLogger.logItem(UserIdentityUtil.class.getCanonicalName(), fromFunction, currentUser, "write deny", classification, null); throw new SecurityException("Access Denied");
if (req == null || req.isEmpty())// Utility.stringIsNullOrEmpty(req.getURI())) { AuditLogger.logItem(this.getClass().getCanonicalName(), "addMoreData", currentUser, "null or empty request ", "not specified", ctx.getMessageContext()); throw new IllegalArgumentException("request is empty"); AuditLogger.logItem(this.getClass().getCanonicalName(), "addMoreData", currentUser, "msg count=" + req.size() + " 1st record agent type=" + req.get(0).getAgentType() + " uri=" + req.get(0).getURI(), req.get(0).getClassification(), ctx.getMessageContext()); UserIdentityUtil.assertAgentRole(currentUser, "addData", req.get(0).getClassification(), ctx); Connection con = null;
AuditLogger.logItem(this.getClass().getCanonicalName(), "setMoreStatus", currentUser, "", (reqs.get(0).getClassification()), ctx.getMessageContext());
AuditLogger.logItem(this.getClass().getCanonicalName(), "getPerformanceAverageStats", currentUser, "", (request.getClassification()), ctx.getMessageContext());
AuditLogger.logItem(this.getClass().getCanonicalName(), "getAllStatus", currentUser, "", (req.getClassification()), ctx.getMessageContext()); Connection con = Utility.getConfigurationDBConnection(); PreparedStatement com = null;
AuditLogger.logItem(this.getClass().getCanonicalName(), "getReport", currentUser, "FAILURE, attempt to access ARS report " + id, wrapper, ctx.getMessageContext()); throw (AccessDeniedException) ex;
AuditLogger.logItem(this.getClass().getCanonicalName(), "setStatus", currentUser, "", (req.getClassification()), ctx.getMessageContext()); Utility.validateClassification(req.getClassification()); throw new IllegalArgumentException("request parameter uri or timestamp is null"); AuditLogger.logItem(this.getClass().getCanonicalName(), "setStatus", currentUser, req.getURI(), (req.getClassification()), ctx.getMessageContext());