Appendix A. Security Event Service

Table of Contents

A.1. Overview
A.2. Event

This appendix describes the security event services.

A.1. Overview

This appendix describes the standard security events that are emitted to EventHandlingService from the SPI classes and default security service implementation classes. Use this reference to develop your own event handling providers by implementing the jeus.security.spi.EventHandlingService SPI.

The listing format is as follows:

G.2.X <Event type> = Event type
       Source Class: The class from which the Event was generated.
       Event Type: Event type
       Event Level: Event Level (FATAL, SERIOUS, WARNING, INFORMATION, DEBUG).
       Event Context: key/value pairs set for the Even context.
       Emitted When? the condition that must be fulfilled for the Event to be generated.

Normally, events are only emitted to an EventHandlingService that is in the same domain as the event source. This excludes two events, the security.install.successful and security.uninstall.attempt events, that are emitted to all configured domains in the security system.

Note

For more information about the jeus.security.base.Event class and the jeus.security.spi.EventHandlingService class, refer to Javadoc.

A.2. Event

The following is the list of the standard security events.

security.validation.failed

Source Classjeus.security.spi.SubjectValidationService
Event Typesecurity.validation.failed
Event LevelWARNING
Event Context
  • Key: "subject"

  • Value: jeus.security.base.Subject that failed validation.

Emitted WhenWhenever a SubjectValidationService throws a SecurityException

security.authentication.failed

Source Classjeus.security.spi.AuthenticationService
Event Typesecurity.authentication.failed
Event LevelWARNING
Event Context
  • Key: "subject"

  • Value: jeus.security.base.Subject that failed the user authentication.

Emitted WhenWhenever user authentication for the Subject fails.

security.authorization.failed

Source Classjeus.security.spi.AuthorizationService
Event Typesecurity.authentication.failed
Event LevelWARNING
Event Context
  • Key: “contextid”

    Value: Context ID for which the permission was checked

  • Key: “permission”

    Value: java.security.Permission that needs to be checked.

  • Key: “subject”

    Value: jeus.security.base.Subject that failed user authentication.

Emitted WhenWhenever the user authentication fails

security.authentication.repository.subject.added

Source Classjeus.security.spi.AuthenticationRepositoryService
Event Typesecurity.authentication.repository.subject.added
Event LevelINFORMATION
Event Context
  • Key: “subject”

  • Value: jeus.security.base.Subject that is added

Emitted WhenWhenever a Subject is successfully added to the AuthenticationRepositoryService.

security.authentication.repository.subject.removed

Source Classjeus.security.spi.AuthenticationRepositoryService
Event Typesecurity.authentication.repository.subject.removed
Event LevelINFORMATION
Event Context
  • Key: “subject”

  • Value: jeus.security.base.Subject that is deleted.

Emitted WhenWhenever a Subject is successfully removed from the AuthenticationRepositoryService.

security.authentication.repository.subject.removed.complete

Source Classjeus.security.spi.AuthenticationRepositoryService
Event Typesecurity.authentication.repository.subject.removed.complete
Event LevelINFORMATION
Event Context
  • Key: “name”

  • Value: The deleted Subject

Emitted WhenWhenever a Subject is successfully removed from the AuthenticationRepositoryService.

security.authorization.repository.policy.added

Source Classjeus.security.spi.AuthorizationRepositoryService
Event Typesecurity.authorization.repository.policy.added
Event LevelINFORMATION
Event Context
  • Key: “policy”

  • Value: jeus.security.base.Policy that is added

Emitted WhenWhenever a Policy is added to the AuthorizationRepositoryService.

security.authorization.repository.policy.removed

Source Classjeus.security.spi.AuthorizationRepositoryService
Event Typesecurity.authorization.repository.policy.removed
Event LevelINFORMATION
Event Context
  • Key: “policy”

  • Value: jeus.security.base.Policy that is deleted

Emitted WhenWhenever Policy data is removed from the AuthorizationRepositoryService.

security.authorization.repository.policy.removed.complete

Source Classjeus.security.spi.AuthorizationRepositoryService
Event Typesecurity.authorization.repository.policy.removed.complete
Event LevelINFORMATION
Event Context
  • Key: “contextid”

    Value: The java.lang.String type Context ID that was removed from the repository.

Emitted WhenWhenever a context id is removed from the AuthorizationRepositoryService.

security.install.successful

Source Classjeus.security.spi.SecurityInstaller
Event Typesecurity.install.successful
Event LevelINFORMATION
Event ContextNone
Emitted WhenAfter the security system has been successfully installed.

security.uninstall.attempt

Source Classjeus.security.spi.SecurityInstaller
Event Typesecurity.uninstall.attempt
Event LevelINFORMATION
Event ContextNone
Emitted WhenBefore the security system is to be uninstalled.