You can translate the question and the replies:

Capture Webservice Log

Hi, My objective is to capture the webserive authication log. Once the service is authenticated I am able to capture that from the tomcat.log. However I am not able to get information if the request is not authenticated. I want to log these authentication logs also. When I try to request a service from a SOAPUI I am able to see the authentication sucess/failure message on the soap ui log window. Objective is to capture this log in a database table. Please suggest a way to read these logs.
user
10-05-2016 08:51:13 -0400
code

4 Answers

Hey, The WebService Server, Apache Tomcat, is able to output all of the web requests it receives. The configuration can be found here: https://community.denodo.com/kb/view/document/Operation/Logging%20incoming%20web%20requests This file can then be parsed into a database with proper delimiters. Unauthenticated access is listed 401 as the <HTTP code> of a line in the log. Hope that helps!
Denodo Team
11-05-2016 05:40:27 -0400
code
Thanks for your answer. I was able to get the entries like 1>127.0.0.1 - - [11/May/2016:04:32:04 -0400] "GET /server/vdb_datahub_rita/i_hub_stg_loan_agrmt/ HTTP/1.1" 403 1119 2>127.0.0.1 - - [11/May/2016:04:33:29 -0400] "GET /server/vdb_datahub_rita/i_hub_stg_loan_agrmt/ HTTP/1.1" 200 2029 I understand that I can categorise them by the status code 403/401/200. However I want to user id to be captured as part of this log. I think the "- -" after the ip is a placeholder for the User name. Please help to get that populated.
user
11-05-2016 07:35:48 -0400
Hey, I think that the users are not showing up because the authentication is being handled by VDP and not the Tomcat server. If you want to see the users who login you have to run the Denodo Monitor. There is a good guide on how to log user authentication here: https://community.denodo.com/kb/view/document/Security/Auditing%20User%20Access%20in%20Virtual%20DataPort Hope that helps!
Denodo Team
11-05-2016 10:36:45 -0400
code
Hi, In case of webservice the service, the request has to be authencated by the webservice before it reaches VDP. I have placed requests in the SOAPUI and I have validated the same. When ever I pass incorrect credentials , I get a log with HTTP status 401. I have configured the monitor and I am able to log all successful web requests. However my intension is to find all those users who tried to access a service by failed because of authentication issues.
user
11-05-2016 13:05:17 -0400
You must sign in to add an answer. If you do not have an account, you can register here