Hi,
we just enabled SAF security on Tomcat 6.0 and it works fine so far.
Is there a way to log SAF logins in a kind of journal dataset or STDOUT/STDERR?
Our environment: z/OS 1.10
JZOS 2.0.0
Tomcat 6.0.18
Java 1.5
Tomcat is our application server for iStrobe from Compuware.
Regards
Wolfgang Amon
Tomcat 6.0.18 log of SAF logins
The best way would be to enable auditing in your SAF security package, but I don't know if that is possible.
Otherwise, the SafRealm java code would have to be changed to do this, since it currently does not log the information.
You could create a subclass of com.dovetail.zos.tomcat.SafRealm and override the authenticate(String, String) method to have something like this:
Otherwise, the SafRealm java code would have to be changed to do this, since it currently does not log the information.
You could create a subclass of com.dovetail.zos.tomcat.SafRealm and override the authenticate(String, String) method to have something like this:
Code: Select all
public Principal authenticate(String username, String credentials) {
Principal principal = super.authenticate(username, credentials);
if (principal != null) {
System.println("SAF user: " + principal.getName() + " logged in");
}
return principal;
}