Josh, Does the customer want events/alerts for failed logins into CloudForms, or for failed logins into their management system. During the design we were assuming the former, but I just want to make sure. Jason
See Brad's response.
See Devel whiteboard field for design.
https://github.com/ManageIQ/manageiq/pull/17508
New commit detected on ManageIQ/manageiq/master: https://github.com/ManageIQ/manageiq/commit/b690828252411f4c7c286e081f852c31d7434324 commit b690828252411f4c7c286e081f852c31d7434324 Author: Jason Frey <jfrey> AuthorDate: Fri Jun 1 11:24:07 2018 -0400 Commit: Jason Frey <jfrey> CommitDate: Fri Jun 1 11:24:07 2018 -0400 Raise an event on failed login attempt https://bugzilla.redhat.com/show_bug.cgi?id=1318353 app/models/authenticator/base.rb | 25 +- db/fixtures/miq_event_definition_sets.csv | 3 +- db/fixtures/miq_event_definitions.csv | 5 + spec/models/authenticator/database_spec.rb | 11 + spec/models/authenticator/httpd_spec.rb | 2 + spec/models/authenticator/ldap_spec.rb | 2 + spec/models/authenticator_spec.rb | 4 + spec/models/user_spec.rb | 6 + 8 files changed, 49 insertions(+), 9 deletions(-)
According to Jason, this RFE requires two parts. 1) PR from comment #7 to create a synthetic event for failed login attempt 2) Another PR (not yet complete) to create a synthetic event when a user account is created
https://github.com/ManageIQ/manageiq-providers-amazon/pull/452
New commit detected on ManageIQ/manageiq-providers-amazon/master: https://github.com/ManageIQ/manageiq-providers-amazon/commit/4cafc5f4e5317750edfdb98a5b3ecd5ed81b8ed7 commit 4cafc5f4e5317750edfdb98a5b3ecd5ed81b8ed7 Author: Adam Grare <agrare> AuthorDate: Fri Jun 8 10:26:26 2018 -0400 Commit: Adam Grare <agrare> CommitDate: Fri Jun 8 10:26:26 2018 -0400 Fix missing MiqServer in Authenticator spec The new audit_failure method in authenticator/base raises an evm event on auth failure which targets the MiqServer.my_server. In the amazon authenticator spec this was nil which was causing the audit_failure method to throw an exception trying to get class and id from the target. https://bugzilla.redhat.com/show_bug.cgi?id=1318353 spec/models/authenticator/amazon_spec.rb | 1 + 1 file changed, 1 insertion(+)
See https://bugzilla.redhat.com/show_bug.cgi?id=1602136 as RFE split from this one. Marking this as POST since this part of the feature is complete.
Verified in 5.10.0.6.20180725145922_d299ff5. "Login Failed" event is exposed in the UI.
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHSA-2019:0212