cabolabs-ehrserver icon indicating copy to clipboard operation
cabolabs-ehrserver copied to clipboard
verified publisher icon ppazos

Monitor login attempts

Open ppazos opened this issue 9 years ago • 3 comments

All access to Production Systems must be logged, including login attempts with contextual data (IP/country, timestamp, number of attempts, etc)

This has to do with production system security and intrusion/attack detection.

ppazos avatar Mar 02 '16 15:03 ppazos

I think we can create ActivityLogs for after action execute or after view rendered, so we get the attempt in the before execute, and the wrong login result in the after execute.

ppazos avatar Nov 09 '16 03:11 ppazos

We can add dismissalble notifications with the client ip so admins can take actions from possible attacks

ppazos avatar Feb 24 '17 08:02 ppazos

The failed logins are saved in ActivityLogs.

I tried to save the username but it is not on the params. Asked on stack overflow: https://stackoverflow.com/questions/44489748/get-username-on-failed-login-on-grails-2-5-5-w-spring-security

Will try this later: http://www.redtoad.ca/ataylor/2011/05/logging-spring-security-events-in-grails/

ppazos avatar Jun 11 '17 23:06 ppazos