zowe
As a system administrator, I need to know about every authentication attempts
Is your feature request related to a problem? Please describe. If the user is being authenticated against SAF or zOSMF such an attempt is being recorded as the SMF record. This serves for auditing purposes. There are situations when API ML is validating user authentication by API ML issued JWT. This information is currently not recorded in SMF.
Describe the solution you'd like As a system administrator, I would like to know about every authentication attempt and I would like to see it in a single place. API ML needs to create SMF record for each authentication with API ML JWT or PAT with details such as timestamp, mainframe identity, and form of the provided authentication(JWT, PAT,...).
create SMF record https://gist.github.com/achmelo/647b673f4e03a4e78cbb7aa3ad3859b1
Tasks
- issue
- [ ] Package and publish the .so file in common-java repo 1pt
- issue Prerequisites - contact support to help with the read of SMF record
- [ ] Include the code in Gateway using JNI
- [ ] Write the SMF record
- [ ] Validate if the message was created - if possible 3pt
- issue
- [ ] Configurable SMF record format
- [ ] Warn users in case off-platform deployment that it will not create an SMF record 1pt
